pam_ldap 1.8.5 security =45

A pam module for authenticating with LDAP
Maintained by: marcus@FreeBSD.org
Port Added: 08 Jun 2001 17:00:20
Also Listed In: net

---

---

This is a PAM module for authenticating with LDAP.

WWW: http://www.padl.com/OSS/pam_ldap.html

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Required To Build: devel/gmake, lang/perl5.8
Required Libraries: net/openldap24-client

---

To install the port: cd /usr/ports/security/pam_ldap/ && make install clean
To add the package: pkg_add -r pam_ldap

---

Configuration Options

     No options to configure

---

Master Sites:

http://www.padl.com/download/

ftp://ftp.padl.com/pub/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

Fix the build.

PR:             142725
Submitted by:   "Alexey V. Degtyarev" <alexey@renatasystems.org>

* Update to 1.8.5
* Allow the configuration file to be overridden by defining
  PAM_LDAP_CONF at build time.

PR:             142468
Submitted by:   skv

Bump PORTREVISION's after OpenLDAP update.

Suggested by:   rafan

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk

Update to 1.8.4.

fix for BUG#291:
don't suppress password policy errors which should not be suppressed

fix for BUG#312:
pam_ldap does not try to reconnect when LDAP server closed the connection

PR:             116176
Submitted by:   mm

Update to 1.8.2.

Dist file re-rolled.  No changes to files according to diff(1).  Updating
distinfo.

Approved by: marcus@

SHA256ify

Approved by: krion@

Update to 1.8.0.

Security:       Fixes a security vulnerability described at
                http://www.kb.cert.org/vuls/id/778916
Requested by:   simon
Approved by:    portmgr (implicit)

Update to 1.7.8, now with a shiny new man page.

At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.

Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.

Update to 1.7.6.

Implement a "mgrate" facility that lets one migrate/overwrite the LDAP
userPassword field of the user being authenticated.  The PAM and LDAP
usernames must be the same.  This makes "pam_ldap migrate" similar to
"pam_smbpass migrate".  This has been submitted to PADL in
http://bugzilla.padl.com/show_bug.cgi?id=178. [1]

Allow pam_ldap to change user passwords under certain circumstances.  This
has been submitted to PADL in
http://bugzilla.padl.com/show_bug.cgi?id=177. [2]

All of this is documented further at
http://www.iem.pw.edu.pl/~wielebap/ldap/pam_ldap/pam_ldap_doc.pdf.

PR:             71289 [1]
                71287 [2]
Submitted by:   Pawel Wieleba <wielebap@iem.pw.edu.pl>

Update to 1.7.1.

Update to 1.6.9.

SIZEify

Submitted by:   trevor

Bump PORTREVISION on all ports that depend on gettext to aid with upgrading.

(Part 1)

Change the references to -STABLE and -CURRENT to 4.X and 5.X respectively
as the latter is more new user-friendly.

Update to 1.6.7.

* Update to 1.6.5
* Use USE_OPENLDAP
* Remove ability to build with openldap12
* Convert display message to a real pkg-message

Use openldap21-client.

Update to 1.6.4.

* Update to 1.6.1
* De-pkg-comment

Point dependencies on net/openldap2 to net/openldap20

Point dependencies on net/openldap to net/openldap12

Update to 1.5.6.

Update to 1.5.4.

Update to 1.5.2.

Update to 1.5.1.

Update to 1.5.0.

Fix the checksum.  The master site must have rerolled the image.  On
inspection, the distfiles have not changed at all:

/tmp 15:09 gyros marcus %512# diff -ruN pam_ldap-148.orig pam_ldap-148
/tmp 15:09 gyros marcus %513#

Reported by:    Kai Gallasch <kai@adminhell.org>

Update to 1.4.8.

Change my ports to use my FreeBSD.org address.

Approved by:    sobomax

Unbreak pam_ldap on -CURRENT after the latest OpenPAM patch

PR:             36613
Submitted by:   maintainer

Forced commit to note that this patch was:

Submitted by:   des

- add a patch to let this build with OpenPAM, but mark as broken for
  -currents with OpenPAM because functionality is broken.
- touch -> ${TOUCH}

PR:             36469
Submitted by:   maintainer

Set where to look for ldap secret file

PR:             36029
Submitted by:   maintainer

Update to 1.4.0    

Update to 1.3.7    

Update to version 1.3.4.    

update to 1.3.1.    

Update to 1.2.3    

Update to 1.2.1    

Update to 1.1.9   Update patch-ac to set compiler flags correctly.    

Add "USE_AUTOMAKE= yes"    

Updated to close PR.    

Fix patches to use etc instead of etc/pam_ldap   Bump PORTREVISION    

New pam port for ldap authentication.    

5 vulnerabilities affecting 16 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities