nss-pam-ldapd branch master updated. 0.9.5-8-ge916a2b

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Commits of the nss-pam-ldapd project <nss-pam-ldapd-commits [at] lists.arthurdejong.org>
To: nss-pam-ldapd-commits [at] lists.arthurdejong.org
Reply-to: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: nss-pam-ldapd branch master updated. 0.9.5-8-ge916a2b
Date: Sat, 13 Jun 2015 23:38:09 +0200 (CEST)

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "nss-pam-ldapd".

The branch, master has been updated
       via  e916a2bbe4330df3287f7a2cd20316fee4c1ab08 (commit)
       via  9a7921f6cba591c43d619b5431cdf05bcd96df09 (commit)
      from  d217632fe007d98875c4ff20fe9fd4cac428c6d0 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=e916a2bbe4330df3287f7a2cd20316fee4c1ab08

commit e916a2bbe4330df3287f7a2cd20316fee4c1ab08
Author: Arthur de Jong <arthur@arthurdejong.org>
Date:   Sat Jun 13 16:58:53 2015 +0200

    Manual page improvements

diff --git a/man/nslcd.conf.5.xml b/man/nslcd.conf.5.xml
index e6d5145..30d6a06 100644
--- a/man/nslcd.conf.5.xml
+++ b/man/nslcd.conf.5.xml
@@ -805,7 +805,7 @@
        netgroup, passwd, protocols, rpc, services and shadow maps using
        case-insensitive matching.
        Setting this to <literal>yes</literal> could open up the system
-       to authorisation vulnerabilities and introduce nscd cache poisoning
+       to authorisation bypass vulnerabilities and introduce nscd cache 
poisoning
        vulnerabilities which allow denial of service.
        The default is to perform case-sensitve filtering of LDAP search
        results for the above maps.
@@ -868,22 +868,22 @@
            
<replaceable>DB</replaceable>,<replaceable>DB</replaceable>,...</term>
      <listitem>
       <para>
-       If this option is set, on start-up and whenever a connection to the
-       <acronym>LDAP</acronym> server is re-established after an error
-       the specified caches are flushed.
+       If this option is set, <command>nslcd</command> will try to flush the
+       specified external caches on start-up and whenever a connection to the
+       <acronym>LDAP</acronym> server is re-established after an error.
       </para>
       <para>
-       If <replaceable>DB</replaceable> is one of the nsswitch maps,
-       <command>nscd</command> is contacted to flush its cache for the
-       specified database.
+       <replaceable>DB</replaceable> can refer to one of the nsswitch maps,
+       in which case <command>nscd</command> is contacted to flush its cache
+       for the specified database.
        <!-- since 0.9.1 -->
        If <replaceable>DB</replaceable> is <literal>nfsidmap</literal>,
        <command>nfsidmap</command> is contacted to clear its cache.
       </para>
       <para>
        Using this option ensures that external caches are cleared of
-       information (typically the absence of users) while the
-       <acronym>LDAP</acronym> server was unavailable.
+       incorrect information (typically the absence of users) that may
+       be present due to unavailability of the <acronym>LDAP</acronym> server.
       </para>
      </listitem>
     </varlistentry>
@@ -1059,8 +1059,8 @@
    backslash (<literal>\</literal>).
   </para>
   <para>
-   The expressions are checked to figure out which attributes to fetch
-   from <acronym>LDAP</acronym>.
+   The expressions are inspected to automatically fetch the appropriate
+   attributes from <acronym>LDAP</acronym>.
    Some examples to demonstrate how these expressions may be used in
    attribute mapping:
   </para>

http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=9a7921f6cba591c43d619b5431cdf05bcd96df09

commit 9a7921f6cba591c43d619b5431cdf05bcd96df09
Author: Arthur de Jong <arthur@arthurdejong.org>
Date:   Sat Jun 13 16:16:50 2015 +0200

    Also fix signed integer bug in binsid2id()
    
    This should have been part of d217632.

diff --git a/nslcd/common.c b/nslcd/common.c
index 9b3a3f9..60be777 100644
--- a/nslcd/common.c
+++ b/nslcd/common.c
@@ -327,7 +327,7 @@ char *sid2search(const char *sid)
 }
 
 /* return the last security identifier of the binary sid */
-long int binsid2id(const char *binsid)
+unsigned long int binsid2id(const char *binsid)
 {
   int i;
   /* find the position of the last security id */
diff --git a/nslcd/common.h b/nslcd/common.h
index 5ca06c1..ffa07ba 100644
--- a/nslcd/common.h
+++ b/nslcd/common.h
@@ -104,7 +104,7 @@ int read_address(TFILE *fp, char *addr, int *addrlen, int 
*af);
 MUST_USE char *sid2search(const char *sid);
 
 /* return the last security identifier of the binary sid */
-MUST_USE long int binsid2id(const char *binsid);
+MUST_USE unsigned long int binsid2id(const char *binsid);
 
 /* checks to see if the specified string is a valid user or group name */
 MUST_USE int isvalidname(const char *name);

-----------------------------------------------------------------------

Summary of changes:
 man/nslcd.conf.5.xml |   22 +++++++++++-----------
 nslcd/common.c       |    2 +-
 nslcd/common.h       |    2 +-
 3 files changed, 13 insertions(+), 13 deletions(-)


hooks/post-receive
-- 
nss-pam-ldapd
-- 
To unsubscribe send an email to
nss-pam-ldapd-commits-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-commits/

nss-pam-ldapd branch master updated. 0.9.5-8-ge916a2b, Commits of the nss-pam-ldapd project

Prev by Date: nss-pam-ldapd branch master updated. 0.9.5-6-gd217632
Next by Date: nss-pam-ldapd branch master updated. 0.9.5-9-g4236dd6
Previous by thread: nss-pam-ldapd branch master updated. 0.9.5-6-gd217632
Next by thread: nss-pam-ldapd branch master updated. 0.9.5-9-g4236dd6