On Tue, May 22, 2012 at 10:06:56PM -0400, Edward Z. Yang wrote:
> Hello all,
>
> We're interested in using SSSD to replace our current use of
> NSS/PAM/NSCD/NSLCD. However, we were curious whether or not
> SSSD had implemented some critical security checks to protect
> against malicious remote do
Hello all,
We're interested in using SSSD to replace our current use of
NSS/PAM/NSCD/NSLCD. However, we were curious whether or not
SSSD had implemented some critical security checks to protect
against malicious remote domains.
- What are the semantics of the local domain: that is,
do
Hi All,
Thanks for the new list. I hope the user list will still get to see
some of the design decisions. It would be nice to have input as a user to what
is going to be added feature wise to sssd.
Cheers,
Greg
> -Original Message-
> From: sssd-devel-boun...@lists.fedorahosted
For quite some time, we have used the sssd-devel mailing list for
development and user configuration issue discussions. As the project has
grown, it becomes more and more clear that we need to separate these
topics into their own lists.
So as of today, we now have a new mailing list for user quest
On Tue, 2012-05-22 at 19:13 +0200, Jakub Hrozek wrote:
> On Tue, May 22, 2012 at 01:06:20PM -0400, Stephen Gallagher wrote:
> > On Tue, 2012-05-22 at 17:43 +0200, Jakub Hrozek wrote:
> > > https://fedorahosted.org/sssd/ticket/1343
> > >
> > > I still haven't been able to fully test the patch, but
On Tue, 2012-05-22 at 11:26 -0400, Stephen Gallagher wrote:
> On Tue, 2012-05-22 at 16:44 +0200, Jan Zelený wrote:
> > There was an issue when IPA provider didn't set PAM_SUCCESS when
> > successfully finished loading SELinux user maps. This lead to the map
> > not being read in the responder.
>
>
On Tue, May 22, 2012 at 01:06:20PM -0400, Stephen Gallagher wrote:
> On Tue, 2012-05-22 at 17:43 +0200, Jakub Hrozek wrote:
> > https://fedorahosted.org/sssd/ticket/1343
> >
> > I still haven't been able to fully test the patch, but sending out for
> > review anyway.
>
> Patch looks good to me. A
On Tue, 2012-05-22 at 17:43 +0200, Jakub Hrozek wrote:
> https://fedorahosted.org/sssd/ticket/1343
>
> I still haven't been able to fully test the patch, but sending out for
> review anyway.
Patch looks good to me. Ack (pending completion of Jakub's testing).
signature.asc
Description: This is
https://fedorahosted.org/sssd/ticket/1343
I still haven't been able to fully test the patch, but sending out for
review anyway.
>From d111b80ff5f49f5efcf3bf7d30abf76533e4d440 Mon Sep 17 00:00:00 2001
From: Jakub Hrozek
Date: Tue, 22 May 2012 17:41:52 +0200
Subject: [PATCH] LDAP nested groups: Do
On Tue, 2012-05-22 at 16:44 +0200, Jan Zelený wrote:
> There was an issue when IPA provider didn't set PAM_SUCCESS when
> successfully finished loading SELinux user maps. This lead to the map
> not being read in the responder.
Obvious ack. Nice catch.
signature.asc
Description: This is a digita
There was an issue when IPA provider didn't set PAM_SUCCESS when
successfully finished loading SELinux user maps. This lead to the map
not being read in the responder.
Thanks
Jan
From c0e205dbdc154ff36297857182b1da161476bb4c Mon Sep 17 00:00:00 2001
From: Jan Zeleny
Date: Tue, 15 May 2012 10:49:1
On 2012-05-14 16:14, Stephen Gallagher wrote:
On Mon, 2012-05-14 at 10:09 -0400, Stephen Gallagher wrote:
On Mon, 2012-05-14 at 15:58 +0200, Daniel Löw wrote:
Hello!
I'am using sssd 1.8 on an Ubuntu 12.04 laptop. So that I can login
even when I am offline.
Everyting works great, but if I take
On Mon, 2012-05-21 at 12:32 +0200, Jakub Hrozek wrote:
> On Thu, May 17, 2012 at 01:56:44PM -0400, Stephen Gallagher wrote:
> > Some languages might need to change the order of the variables in the
> > strings. By assigning them a positional value, we make it possible to
> > reorder them.
> >
> >
On Tue, 2012-05-22 at 08:58 -0400, Stephen Gallagher wrote:
> On Tue, 2012-05-22 at 07:13 -0500, Ariel Barria wrote:
> >
> > > Looks good to me now, ack
> > >
> > > Just please add a space after the comma in the sss_log call before
> > > pushing.
>
> Ack, but in general when someone says "before
On Mon, 2012-05-07 at 10:28 -0400, Stephen Gallagher wrote:
> On Mon, 2012-05-07 at 15:38 +0200, Jakub Hrozek wrote:
> > On Mon, May 07, 2012 at 02:37:00PM +0200, Stef Walter wrote:
> > > On 05/07/2012 02:12 PM, Jakub Hrozek wrote:
> > > > I only have two comments related to code style:
> > > >
>
On Tue, 2012-05-22 at 11:30 +0200, Jakub Hrozek wrote:
> On Mon, May 21, 2012 at 08:38:26PM -0400, Stephen Gallagher wrote:
> > Fixes https://fedorahosted.org/sssd/ticket/1330
> >
> > Both places in the code that consume this function are properly checking
> > for n_etype_list > 0 before using it.
On Tue, 2012-05-22 at 11:14 +0200, Jakub Hrozek wrote:
> On Mon, May 21, 2012 at 02:32:43PM -0400, Stephen Gallagher wrote:
> > Strictly speaking, it would have been freed in the done: label. I
> > originally did that because I thought I was going to hang onto nval
> > longer. Since I clearly do no
On Tue, 2012-05-22 at 07:13 -0500, Ariel Barria wrote:
>
> > Looks good to me now, ack
> >
> > Just please add a space after the comma in the sss_log call before
> > pushing.
Ack, but in general when someone says "before pushing" it's actually a
direction to me to fix it up before I push it to m
> Date: Tue, 22 May 2012 11:22:41 +0200
> From: jhro...@redhat.com
> To: sssd-devel@lists.fedorahosted.org
> Subject: Re: [SSSD] [PATCH] 1213-Warn to syslog when dereference requests
> fail
>
> On Mon, May 21, 2012 at 10:02:19PM -0500, Ariel Barria wrote:
> >thanks for you time and exp
Hi List,
I am using sssd (F17) with AD and what I observed is that sssd frequently marks my AD
server working and then "not working". Symptoms:
(Mon May 21 13:58:43 2012) [sssd[be[default]]] [sdap_id_op_connect_step]
(0x4000): beginning to connect
(Mon May 21 13:58:43 2012) [sssd[be[default]]]
On Tue, May 22, 2012 at 11:22:59AM +0200, Jakub Hrozek wrote:
> On Mon, May 21, 2012 at 02:01:25PM -0400, Stephen Gallagher wrote:
> > On Mon, 2012-05-21 at 11:36 +0200, Jakub Hrozek wrote:
> > > On Fri, May 18, 2012 at 09:28:20AM -0400, Stephen Gallagher wrote:
> > > > Patch 0001: Make SSSDConfig
Hello,
As SSSD (the System Security Services Daemon) is gaining ground as a
bridge between applications running on a machine and central
authentication sources such as Active Directory and FreeIPA, questions
about support for other authentication protocols start to come up. One
such protocol is RA
On Mon, May 21, 2012 at 08:38:26PM -0400, Stephen Gallagher wrote:
> Fixes https://fedorahosted.org/sssd/ticket/1330
>
> Both places in the code that consume this function are properly checking
> for n_etype_list > 0 before using it.
Ack, looks good and the clang bug report is gone.
_
On Mon, May 21, 2012 at 02:01:25PM -0400, Stephen Gallagher wrote:
> On Mon, 2012-05-21 at 11:36 +0200, Jakub Hrozek wrote:
> > On Fri, May 18, 2012 at 09:28:20AM -0400, Stephen Gallagher wrote:
> > > Patch 0001: Make SSSDConfig a package
> > > We were polluting the primary Python space with severa
On Mon, May 21, 2012 at 10:02:19PM -0500, Ariel Barria wrote:
>thanks for you time and explanation.
>
>> Date: Mon, 21 May 2012 12:43:37 +0200
>> From: jhro...@redhat.com
>> To: sssd-devel@lists.fedorahosted.org
>> Subject: Re: [SSSD] [PATCH] 1213-Warn to syslog when dereferenc
On Mon, May 21, 2012 at 02:32:43PM -0400, Stephen Gallagher wrote:
> On Mon, 2012-05-21 at 13:04 +0200, Jakub Hrozek wrote:
> > On Mon, May 14, 2012 at 11:04:00AM -0400, Stephen Gallagher wrote:
> > > Joshua Roys submitted a patch in
> > > https://bugzilla.redhat.com/show_bug.cgi?id=726456 to add s
26 matches
Mail list logo