Summary: | I've upgraded from openldap-2.1.30-r? to openldap-2.2.19 and this is what I found. | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Warren Howard <warren> |
Component: | New packages | Assignee: | Robin Johnson <robbat2> |
Status: | RESOLVED FIXED | ||
Severity: | minor | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Warren Howard
2005-02-19 08:08:55 UTC
Why do people consistantly not use the very latest versions of hardmasked packages? Use openldap-2.2.23-r1 instead! 1. "echo net-nds/openldap >>/etc/portage/package.unmask" 2. the ebuild already requires db-4.2.52_p1, so your machine should have brought it in. 3. provide in more detail your old ACL and your new ACL. 4. in you see in the instructions that are spit out by 2.2.23-r1, this is noted. 5. expect a lot more of your ldap-using stuff to break, I don't consider openldap-2.2 safe for stable x86 yet (there are a number of packages that need similar fixes as pam_ldapp/nss_ldap). Re: Why do people consistantly not use the very latest versions of hardmasked packages? I guess emerge laziness is the simplest answer. I did an emerge --deep --update world 2-3 weeks prior to doing the openldap upgrade. The ebuild for openldap-2.2.19 was the latest that I had so that's the one I used. Re: provide in more detail your old ACL and your new ACL. Old ACL that 2.2 did not like: access to attribute=userPassword by group/groupOfNames/member=cn=sysadmin,dc=naturesoft,dc=net write by anonymous auth by self write by * none access to attribute=homePhone by group/groupOfNames/member=cn=hradmin,dc=naturesoft,dc=net write by self write by * none Changed ACL accepted by 2.2 (attribute -> attrs): access to attrs=userPassword by group/groupOfNames/member=cn=sysadmin,dc=naturesoft,dc=net write by anonymous auth by self write by * none access to attrs=homePhone by group/groupOfNames/member=cn=hradmin,dc=naturesoft,dc=net write by self write by * none Regards, Warren Fixed in 2.2.24. |