Subject: unblock: nss-pam-ldapd/0.7.13 Package: release.debian.org User: release.debian.org@packages.debian.org Usertags: freeze-exception Severity: normal Please unblock version 0.7.13 of nss-pam-ldapd. It has the following changes: * fix handling of idle_timelimit option * fix error code for problem while doing password modification The second change is rather minor but is just a one-line fix (the change in nslcd/pam.c) that should be obvious and without possible side effects. The first change is the RC one because it causes problems if the LDAP server closes the connection after a timeout. This confuses the reconnect-handling and timeout code and makes the LDAP server appear to be unavailable for some time. This is apparently common when using Microsoft Active Directory and makes it impossible to resolve user names (and anything else that comes from LDAP). A proper fix for this is in the works in the development version but that is much larger. The fix is for the workaround that is normally used for this (have the client side use a timeout). The problem was that timed out connections were never closed because the new search was started before trying to close the old connection. Some background for this problem is available here: http://lists.arthurdejong.org/nss-pam-ldapd-users/2010/msg00173.html (since this issue did not come in through the BTS it's not there) Thanks for considering. -- -- arthur - adejong@debian.org - http://people.debian.org/~adejong --
Attachment:
signature.asc
Description: This is a digitally signed message part