Re: [SSSD] Legacy Systems Gateway Scenario

On 07/27/2012 09:02 AM, Simo Sorce wrote: Hi George, I guess one of the reasons you want to tie this into SSSD is the caching capabilities we get for free with it ? correct. custom security solution also tend to be full of holes, to the extent possible it's better to rely on something standard.

Re: [SSSD] [PATCH] sudo: provide automatic configuration of machine hostnames

On Thu, Jul 26, 2012 at 11:37:21AM +0200, Pavel Březina wrote: > On 07/25/2012 04:14 PM, Jakub Hrozek wrote: > >On Wed, Jul 25, 2012 at 01:29:26PM +0200, Jan Zelený wrote: > >>Dne středa 25 července 2012 10:34:15, Pavel Březina napsal(a): > >>>On 07/24/2012 02:16 PM, Pavel Březina wrote: > On 2

Re: [SSSD] [PATCHES] If possible, use cache in SELinux rules processing

On Mon, Jul 30, 2012 at 09:34:43AM +0200, Jan Zelený wrote: > These three patches provide changes that reduce the amount of data retrieved > from IPA server in case this data is previously retrieved by HBAC access > provider. > > #168: modify hbac_get_cached_rules() so it can be used out of the

[SSSD] [PATCH] Return value of fread in src/tools/sss_debuglevel.c no, longer ignored.

This patch should silent the GCC warning mentioned in ticket #1426 and adds new debug message when there is no pid in the SSSD_PIDFILE. https://fedorahosted.org/sssd/ticket/1426 >From 2746b37d1518e729e77ccc662c53aa918da5ae1f Mon Sep 17 00:00:00 2001 From: Michal Zidek Date: Mon, 30 Jul 2012 1

Re: [SSSD] [PATCH] First Boot Seed Tool

On Mon, Jul 30, 2012 at 06:02:45PM +0200, Pavel Březina wrote: > On 07/27/2012 09:30 PM, Nick Guay wrote: > >On 25/07/12 11:01, Pavel Březina wrote: > >>Nack. > >> > >>Things to consider: > >> > >>- support reading password directly from command line > >> - -p 123 | -password 123 > >> - -f file |

Re: [SSSD] [PATCH] First Boot Seed Tool

On 07/27/2012 09:30 PM, Nick Guay wrote: On 25/07/12 11:01, Pavel Březina wrote: Nack. Things to consider: - support reading password directly from command line - -p 123 | -password 123 - -f file | --password-file file - support reading everything from file that contains users in passwd

Re: [SSSD] [PATCH] document how sudo works with sssd

On 30/07/12 03:21, Pavel Březina wrote: On 07/27/2012 09:28 PM, Nick Guay wrote: On 26/07/12 08:31, Pavel Březina wrote: On 07/26/2012 02:24 PM, Nick Guay wrote: Two grammar fixes for the rule caching mechanism section: s/kind/kinds s/large/large amounts of Ack otherwise. Thanks. Patch is a

Re: [SSSD] [PATCHES] Primary server support in SSSD

On 07/20/2012 02:04 PM, Jan Zelený wrote: Dne čtvrtek 19 července 2012 16:10:08, Stephen Gallagher napsal(a): On Tue, 2012-07-17 at 11:21 +0200, Jan Zelený wrote: Dne středa 11 července 2012 13:34:33, Stephen Gallagher napsal(a): On Thu, 2012-06-21 at 12:15 +0200, Jan Zelený wrote: On Fri, 20

[SSSD] [PATCHES] If possible, use cache in SELinux rules processing

These three patches provide changes that reduce the amount of data retrieved from IPA server in case this data is previously retrieved by HBAC access provider. #168: modify hbac_get_cached_rules() so it can be used out of the HBAC code #169: use cache for HBAC rules #170: use cache for host reco

Re: [SSSD] [PATCH] document how sudo works with sssd

On 07/27/2012 09:28 PM, Nick Guay wrote: On 26/07/12 08:31, Pavel Březina wrote: On 07/26/2012 02:24 PM, Nick Guay wrote: Two grammar fixes for the rule caching mechanism section: s/kind/kinds s/large/large amounts of Ack otherwise. Thanks. Patch is attached. One last thing I missed. Add