On Tue, Feb 7, 2012 at 2:09 AM, Jakub Hrozek wrote:
> On Mon, Feb 06, 2012 at 05:31:04PM -0800, Jeff Schroeder wrote:
>> On Mon, Feb 6, 2012 at 5:16 PM, Stephen Gallagher
>> wrote:
>> > The SSSD is proud to announce the release of the first beta of SSSD
>> > 1
r RHEL? Anything different or new?
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
1 inline comment.
Sent from my iPhone
On Dec 8, 2011, at 16:01, Ian Kent wrote:
> On Thu, 2011-12-08 at 17:52 +0100, Jakub Hrozek wrote:
>> Hi,
>>
>> I have created a wiki page summarizing my design proposal on integrating
>> SSSD with automounter:
>> https://fedorahosted.org/sssd/wiki/DesignD
o-version="-3.fc15"
> $> sssd --version
> 1.7.0-3.fc15
What is the point of this? Hi, my name is rpm -qi sssd
Not a *bad* feature per-se, but kind of strange for the default. I do
like the build in the --version output for when you are testing
scratch builds or cherrypicking fixes
This sounds like a known bug. Try using the RHEL 5.7 rpm. I ran into this
same bug and the 5.7 package fixed it
Sent from my Samsung Galaxy Tablet 10.1
On Aug 8, 2011 5:16 PM, "Michael Gliwinski" <
michael.gliwin...@henderson-group.com> wrote:
> On Monday 08 Aug 2011 15:51:52 Stephen Gallagher wro
On Fri, Jun 24, 2011 at 11:15 AM, Johnny Tan wrote:
> On Wed, Jun 22, 2011 at 8:59 AM, Jeff Schroeder
> wrote:
>>> What's the exact version I should be looking for? Whether it's shipped
>>> with the 5.7-BETA or even a later one that is recommended. I'm
&g
ind the most recent possible srpm and
> then drop the latest maintenance tarball in there, I could do an rpm
> rebuild of it.
You might try sssd-1.5.1-34.el6_1.1.src.rpm from:
http://ftp.scientificlinux.org/linux/scientific/6rolling/source/SRPMS/vendor/
You might need to update a couple of pac
On Fri, Jun 17, 2011 at 2:46 PM, Johnny Tan wrote:
> On Fri, Jun 17, 2011 at 5:37 PM, Jeff Schroeder
> wrote:
>> On Fri, Jun 17, 2011 at 2:12 PM, Johnny Tan wrote:
>>> I recently setup sssd (sssd-1.2.1-39.el5) in our environment. We have
>>> an LDAP server runn
nt group groupthatfailedusershouldbein@LDAP
It might very well be something related to the cache cleanup bug I've
ran into with that exact same version of sssd (RHEL 5.6 perhaps?)
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprogn
, it would only deny access to valid users.
Tested-by: Jeff Schroeder
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
ht
c:
a noun is a person, place, or thing. As a general rule, anything
ending with "ing" that is something you can do is a verb. This
includes finding. However, "Searching for" is probably better than
"Finding" in this context.
--
Jeff Schroeder
Don't drink and de
working box.
>
> Is there a cunning way to get the peripheral boxen to authenticate against
> the sssd daemon on the core server?
Setup the "core server" as an ldap slave and then setup sssd business as usual.
--
Jeff Schroeder
Don't drink and derive, alc
for real this time
2011/2/8 Jeff Schroeder :
> looping in sssd-devel.
>
> Reference bug: https://bugzilla.redhat.com/show_bug.cgi?id=675007
>
> Милош, what is your username in git? I'm pretty sure I can manually
> clear your entry with ldbedit for now.
>
> 2011/2/8
On Wed, Jan 26, 2011 at 10:20 AM, Simo Sorce wrote:
> On Wed, 2011-01-26 at 05:11 -0800, Jeff Schroeder wrote:
>> On Wed, Jan 26, 2011 at 3:54 AM, Stephen Gallagher
>> wrote:
>> ...snip...
>> > Ok, so now that we know we have a patch to accomplish this... we h
is seems most appropriate to
put the patch on bugzilla and then CLOSEDWONTFIX.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahoste
's probably worth it to
> listen.
Why don't you make sssd also complain on startup about this option?
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing
On Thu, Dec 9, 2010 at 7:54 AM, Stephen Gallagher
wrote:
>
RCVX
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahos
X-YY = a comma-separated list of items from XX to YY, or
>> dash-separated ranges.
>> >> range = dash-separated range
>> > This definition seems incomplete but I do not know how to make it
>> better...
>>
>> >> For example, (interval 1-31) 3-7,10,12,15,25-31 with no spaces inside.
>>
>> > Thank you,
>> > Dmitri Pal
>>
>> > Sr. Engineering Manager IPA project,
>> > Red Hat Inc.
>>
>>
>> > ---
>> > Looking to carve out IT costs?
>> > www.redhat.com/carveoutcosts/
>>
>> > ___
>> > Freeipa-devel mailing list
>> > freeipa-de...@redhat.com
>> > https://www.redhat.com/mailman/listinfo/freeipa-devel
>>
>>
> ___
> sssd-devel mailing list
> sssd-devel@lists.fedorahosted.org
> https://fedorahosted.org/mailman/listinfo/sssd-devel
>
> --
> Thank you,
> Dmitri Pal
>
> Sr. Engineering Manager IPA project,
> Red Hat Inc.
>
>
> ---
> Looking to carve out IT costs?
> www.redhat.com/carveoutcosts/
>
> ___
> sssd-devel mailing list
> sssd-devel@lists.fedorahosted.org
> https://fedorahosted.org/mailman/listinfo/sssd-devel
>
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
t;>
>>> ACK
>>
>
> Pushed to master
> - --
> Stephen Gallagher
Will this be added to sssd-1.2 as well or is 1.5 going to soon be the
next "stable" release?
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't m
Do you have users asking for this? The intention is fantastic, but the idea
sound scary.
Sent from my iPhone
On Nov 7, 2010, at 8:36 AM, Simo Sorce wrote:
> On Sun, 07 Nov 2010 07:00:04 -0500
> Stephen Gallagher wrote:
>
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA1
>>
>> On 11/05/201
ts configuration.
> On a server having no users/groups during service sssd restart might be
> undesirable.
>
> Best,
> Mo
Care to take a shot at a patch? If not, I might get a chance to work
on it tonight.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysi
On Wed, Sep 29, 2010 at 3:40 AM, Stephen Gallagher wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 09/28/2010 07:02 PM, Jeff Schroeder wrote
>>
>> Not for the sake of being argumentative, but for the sake of
>> completeness, why do you want to change
On Wed, Sep 29, 2010 at 1:45 AM, Jakub Hrozek wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 09/29/2010 01:02 AM, Jeff Schroeder wrote:
>> Not for the sake of being argumentative, but for the sake of
>> completeness, why do you want to change the se
t things like netgroups to work a certain way?
While not disagreeing, I'm just curious as to the reasoning.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
edorahosted.org/sssd/
[3] http://fedoraproject.org/wiki/Features/SSSD
[4] http://git.gnome.org/browse/sysadmin-bin/tree/create-auth
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
__
oup can be
> considered up to date, and yet at the same time mark it as "incomplete"
> or something like that for getent group calls (and vice versa ?)
>
>
> I guess we could have a third option to manage this, and allow people
>
On Wed, Aug 4, 2010 at 11:53 AM, Jeff Schroeder
wrote:
> On Wed, Aug 4, 2010 at 11:37 AM, Stephen Gallagher
> wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA1
>>
>> The initial verification of the old password was returning an
>> error because we w
in the function to
> DP_ERR_FATAL.
>
> Pushing this to master and sssd-1-2 under the one-liner rule.
Tested-by: Jeff Schroeder
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
On Fri, Jul 23, 2010 at 1:03 PM, Jeff Schroeder
wrote:
> On Fri, Jul 23, 2010 at 10:24 AM, Martin Nagy wrote:
>> Hi,
>> this is (hopefully) my last stab at asynchronous ldap bind. I have
>> tested it on fedora and it seems to work pretty ok, but I haven't tried
>&g
not work.
What can I do to help you fix this?
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
p easier, as the most common
> configuration errors will appear in /var/log/messages, instead of
> requiring the user to turn on the debug logs.
This was the biggest problem in our initial sssd deployment. The only
way to tell what was the issues was running the daemon in debug mode.
Acked-By
Not a SIGINT, but perhaps a SIGTERM. I actively try to kill sssd in
strange ways before rolling it out and that involves sending signals
to the various subprocesses. Would it ever make sense to send a SIGHUP
to a specific backend to have it re-read the config without the entire
sssd suite of daemo
is set
as UID_MIN in /etc/login.defs. Every system running sssd should have
the shadow-utils package installed and hence would have
/etc/login.defs. Then the min would be lower on systems like fedora
(default uid_min=500) and higher on systems like debian/*buntu
(default uid_min=1000). Just some food fo
On Wed, Jun 2, 2010 at 7:39 AM, Stephen Gallagher wrote:
> On 06/02/2010 10:37 AM, Jeff Schroeder wrote:
>>
>> Actually, I am using: rpm-4.6.1-3.fc10. It properly added a dep on
>> libsemanage.so.6, but I thought a new dependency should be explicit vs
>> implicit sor
On Wed, Jun 2, 2010 at 7:12 AM, Stephen Gallagher wrote:
> On 06/01/2010 10:26 AM, Jeff Schroeder wrote:
>> On Tue, Jun 1, 2010 at 7:24 AM, Stephen Gallagher
>> wrote:
>>> On 05/30/2010 06:34 PM, Jeff Schroeder wrote:
>>>> On Sun, May 30, 2010 at 1:25 PM, J
On Tue, Jun 1, 2010 at 7:24 AM, Stephen Gallagher wrote:
> On 05/30/2010 06:34 PM, Jeff Schroeder wrote:
>> On Sun, May 30, 2010 at 1:25 PM, Jakub Hrozek wrote:
>>>
>>> On 05/28/2010 08:59 PM, Jeff Schroeder wrote:
>>>> Tested against master and cherry
On Sun, May 30, 2010 at 1:25 PM, Jakub Hrozek wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 05/28/2010 08:59 PM, Jeff Schroeder wrote:
>> Tested against master and cherry-picked to sssd-1-2. Applies cleanly to both.
>>
>
> Jeff,
> thank you for t
Tested against master and cherry-picked to sssd-1-2. Applies cleanly to both.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
From 82dba5ec92c26dd2bbc71b19b69a5730fd0f0cc4 Mon Sep 17 00:00:00 2001
From: Jeff Schroeder
Date: F
ctory with 100 000 users and 10 000
> groups?
>
> Happy hacking,
> --
> Petter Reinholdtsen
What version of sssd do you have and could you please post your
configuration file? There was an issue with 1.0.5 and certain
configurations that would cause 100% cpu usage.
--
Jeff Schro
lize that sometimes in the linux kernel development, people
have to submit their code a dozen or more times to get it accepted
right? Quality matters when you have to support something for a long
time. What would happen if everyone took their ball and went home?
This is no way to act in a "communit
On Thu, Apr 15, 2010 at 9:00 AM, Dmitri Pal wrote:
> Jeff Schroeder wrote:
>> On Thu, Apr 15, 2010 at 8:09 AM, Stephen Gallagher
>> wrote:
>>
>>> On 04/15/2010 11:07 AM, Tomas Mraz wrote:
>>>
>>>> On Thu, 2010-04-15 at 09:23 -0400, Stephen Gal
r use by any project that
> wants it.
Alright well corner cases and "magic" handling of multiline stuff
seems wrong. Be dumb about it and let the caller of your library
figure some of that out. If someone wants to store binary data in an
ini file, let them. That seems slightly insane,
e the newline/escape problem in
> libini_config itself is both too complex and too limiting. It is more
> complexity being added to the libini_config than a simple INI file
> parser needs to have, and by implementing any particular approach to
> managing the data, we are limiting is us
if the library is updated to later version the application would
> not be
> affected by the new escaping rules until application actually
> decides to support it. In this case a new version would use other, later,
> flag and would migrate its config values to a new format.
>
>
On Tue, Apr 13, 2010 at 10:16 AM, Stephen Gallagher wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 04/13/2010 01:10 PM, Jeff Schroeder wrote:
>> On Tue, Apr 13, 2010 at 10:02 AM, Dmitri Pal wrote:
>>> Jakub Hrozek wrote: > On 04/13/2010 04:39 P
ll send an
> updated patch shortly _
> sssd-devel mailing list sssd-devel@lists.fedorahosted.org
> https://fedorahosted.org/mailman/listinfo/sssd-devel Thank you, Dmitri Pal
> Engineering Manager IPA project, Red Hat Inc. ---
> Looking to carve out IT co
on this but think this conversation might be better
off restarted when the technical aspects start being implemented.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mai
any config file that
> anyone can edit?
And what is wrong with a a .d directory like every other piece of 'nix
software in existence? The sssd.api.d directory seems like the proper
way whereas 1 big schema file is a step backwards. For 1 it would be
breaking both Debian Policy and Fedora Pa
u proposed seems counter-intuitive.
> This is currently not supported but would be easy to add when needed.
> But again we are talking about the ini files and explicitly multi value
> lists.
> It is not a good practice to have spaces in the multi value lists anyways.
> And I do not wa
t; ldap_set_option() succeeds.
Works like a champ with openldap 2.4.12.
Tested-by: Jeff Schroeder
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@
On Mon, Jan 11, 2010 at 2:17 PM, Simo Sorce wrote:
>
> A little nasty and rare segfault.
>
> Many thanks to Jeff for spotting and reporting this one.
>
> Simo.
Thanks as usual for turning this around so quickly.
Tested-by: Jeff Schroeder
--
Jeff Schroeder
Don't drink
reload} in this instance.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
oses. Patches are welcome :-) > Review of the elapi megapatch
> coming later. If you agree with my assessment I will provide fixes for items
> that I said I "will do". I will open a ticket for collection and will defer
> the rest. ___
ative Commons for the
>> logo unless someone pipes up with another recommendation.
>
> We need to be very clear about what CC license to adopt, CC has a wide
> range of licenses that go from almost public domain, to almost
> proprietary.
>
> Usally in software projects it is
/usr/lib64/sssd/libsss_ldap.so: undefined symbol:
sssm_ldap_access_init
Is this a problem? Authentication appears to be working but I'm not
sure 100% as that can't be good.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http:/
se without sssd_dp? This is the second time we've seen
this since 0.6 was released but it is still a legit problem.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-deve
On Tue, Sep 29, 2009 at 5:11 AM, Stephen Gallagher wrote:
> On 09/29/2009 08:09 AM, Jeff Schroeder wrote:
>> On Tue, Sep 29, 2009 at 4:37 AM, Stephen Gallagher
>> wrote:
>>> Loop control variable was not being incremented.
>>> I also converted a goto loop
> Stephen Gallagher
> RHCE 804006346421761
>
> Looking to carve out IT costs?
> www.redhat.com/carveoutcosts/
>
> ___
> sssd-devel mailing list
> sssd-devel@lists.fedorahosted.org
> https://fedorahosted.org/mailman/listinfo/sssd-devel
&
On Mon, Sep 14, 2009 at 12:59 PM, Stephen Gallagher wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 09/14/2009 03:56 PM, Jeff Schroeder wrote:
>> What is the suggested version of sssd to use as a glorified nscd
>> replacement for an openldap setup? I happen
client.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
___
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
60 matches
Mail list logo
