-
Notifications
You must be signed in to change notification settings - Fork 251
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
SPEC: add CentOS Stream 9 / RHEL 9 only patch
to change default value of 'ldap_id_use_start_tls' to 'false'
- Loading branch information
1 parent
10bf7ab
commit 1a3ce88
Showing
2 changed files
with
40 additions
and
1 deletion.
There are no files selected for viewing
37 changes: 37 additions & 0 deletions
37
contrib/0901-ldap-Switch-ldap_id_use_start_tls-default-to-False.patch
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,37 @@ | ||
| Subject: [PATCH] ldap: Switch ldap_id_use_start_tls default to False | ||
|
|
||
| CentOS Stream 9 / RHEL 9 only patch. | ||
| --- | ||
| src/man/sssd-ldap.5.xml | 2 +- | ||
| src/providers/ldap/ldap_opts.c | 2 +- | ||
| 2 files changed, 2 insertions(+), 2 deletions(-) | ||
|
|
||
| diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml | ||
| index a6f9b1c97..5e7581809 100644 | ||
| --- a/src/man/sssd-ldap.5.xml | ||
| +++ b/src/man/sssd-ldap.5.xml | ||
| @@ -917,7 +917,7 @@ | ||
| <emphasis>true</emphasis> is strongly recommended for security reasons. | ||
| </para> | ||
| <para> | ||
| - Default: true | ||
| + Default: false | ||
| </para> | ||
| </listitem> | ||
| </varlistentry> | ||
| diff --git a/src/providers/ldap/ldap_opts.c b/src/providers/ldap/ldap_opts.c | ||
| index d0d2b9e74..00a41aad3 100644 | ||
| --- a/src/providers/ldap/ldap_opts.c | ||
| +++ b/src/providers/ldap/ldap_opts.c | ||
| @@ -75,7 +75,7 @@ struct dp_option default_basic_opts[] = { | ||
| { "ldap_tls_cert", DP_OPT_STRING, NULL_STRING, NULL_STRING }, | ||
| { "ldap_tls_key", DP_OPT_STRING, NULL_STRING, NULL_STRING }, | ||
| { "ldap_tls_cipher_suite", DP_OPT_STRING, NULL_STRING, NULL_STRING }, | ||
| - { "ldap_id_use_start_tls", DP_OPT_BOOL, BOOL_TRUE, BOOL_TRUE }, | ||
| + { "ldap_id_use_start_tls", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE }, | ||
| { "ldap_id_mapping", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE }, | ||
| { "ldap_sasl_mech", DP_OPT_STRING, NULL_STRING, NULL_STRING }, | ||
| { "ldap_sasl_authid", DP_OPT_STRING, NULL_STRING, NULL_STRING }, | ||
| -- | ||
| 2.45.0 | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters