Make sure we only link with kerberos llibraries if kerberos features
are enabled. Otherwise we produce a binaruy that requires unused
libraries, which is a liability when we try to use it on a system
where they are not installed.
* fix: add versioning information to binary
* fix: add AM_MAINTAINER_MODE
* fix: bad LDAP query for ether lookups
* fix: clarify bind timelimit defaults in ldap.conf
* fix: call do_close() if ldap_result() or ldap_parse_result() fails
(before returning NSS_UNAVAIL)
* fix: FreeBSD thread library check
* fix: deallocate context in
_nss_ldap_ent_context_release() to avoid bad usage
* fix: don't leak file descriptors in _nss_ldap_readconfig
Changes 264:
* fix: MAP_H_ERRNO() should map NSS_TRYAGAIN to NETDB_INTERNAL not TRY_AGAIN
* fix: ldaps:// URIs only work if "ssl on" is set
* fix: nss_ldap exposes malformed entries to the system
Changes 263:
* fix: nss_ldap returns success from setnetgrent() when the requested netgroup
doesn't exist
* fix: getXXent() only returns NULL once before implicitly calling
setXXent(), whereas other backends continue to return NULL
Changes 262:
* fix: nss_ldap fails to work on Solaris without that patch applied
Changes 261:
* fix: ldap.conf template is missing a comment in the first line
and referrals are used together (http://secunia.com/advisories/15906/)
mostly from Adrian Portelli, tested by me
(The most recent version 242 kills the system completely if the LDAP
server is not running -- endless connection retries.)
