PAM modules
Xin LI
delphij at delphij.net
Tue Sep 20 19:32:23 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 09/18/11 11:03, Dag-Erling Smørgrav wrote:
> Xin LI <delphij at delphij.net> writes:
>> LDAP? (We do currently have some work on LDAP integration but
>> not sure if the community would be interested -- this would need
>> an import of stripped down OpenLDAP) and modifies OpenSSH to
>> support public key in LDAP directory.
>
> I would vote for importing a *complete* OpenLDAP, unless there are
> good reasons not to; "slim base" isn't, considering how useful LDAP
> is.
The main concern I have is that users might want to stay on an older
FreeBSD release, while wanting features of a new OpenLDAP. That's why
I would prefer a libxml style import -- users always have choice to
install a new OpenLDAP without any concern of breaking their system
and we can always deliver security fixes with freebsd-update. Would
that make the trimmed down and renamed OpenLDAP import sound sensible?
Cheers,
- --
Xin LI <delphij at delphij.net> https://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (FreeBSD)
iQEcBAEBCAAGBQJOeOpGAAoJEATO+BI/yjfBmX4H/0fx3Ld8+EkkbYX5LTXSyBt4
9x2ARzTi18+G/j+eYaiNutD4P+9voLnIGEiJwSTa5tXCtKkysRKZUkvetr+8uV7z
6aykrn+oaD0ol6nhWHESL4sCZh8nAoXLzQYaXKqw3FYH9pbQlckjr26UM4WGT8k/
Z129X0fh6TVN8vaztruJGNkLle69ruAgWpxMvTfligC8+Pbj7mV6YmdAwUidH3hL
YtlM7UoogZZzex3qpTUMq6gpKOA0BZTxPhOXWKhfgEz8enFuiYCo1Vs4DpS8S1i+
sbRcn6fTImRkC1FVDpPXEj/piwN/cIb/xv70gfeqgjxUL4LMFSrn9L5kkQ4K0wY=
=mRAO
-----END PGP SIGNATURE-----
More information about the freebsd-security
mailing list