*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
** Information type changed from Public to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
** Information type changed from Public Security to Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
I confirm that coments #22, 23 and 24 fixed the problem.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
I can confirm comment #22 resolved this for me on 12.04, but I had to
pull in the following dependencies to build successfully.
# apt-get install devscripts libgcrypt11-dev zlib1g-dev cdbs gtk-doc-
tools
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
Also, forgot to include...
# apt-get install nettle-dev libnettle4
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
here is the process which i followed to fix the issue
In case if someone else has an issue with sudo access with 12.04. They
need to reinstall the gnutls library with nettle not with lingcrypt. As
the
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
A quick workaround that solved my problem with this:
First install libnss-ldap
Configure ldap stuff, test if you can login but can't use setuid apps.
Then install nslcd and configure.
After these steps my
*** This bug is a duplicate of bug 423252 ***
https://bugs.launchpad.net/bugs/423252
** This bug has been marked a duplicate of bug 423252
NSS using LDAP+SSL breaks setuid applications like su, sudo, apache2 suexec,
and atd
--
You received this bug notification because you are a member
Is anything being done about this bug? This is a serious bug that would
stop 12.04 from being used in many enterprise deployments. In our
environment, we have mixed Mac and Linux workstations, and many Linux
(CentOS, Debian, and Ubuntu) servers. We use LDAP for authentication,
and the only way
The DEP-5 specification v1.0 was released on Monday February 22, 2012 as
part of debian-policy_3.9.3.0_all.deb
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL
DEP-5: Patches pushed to the Debian Policy repository
http://lists.debian.org/debian-policy/2012/02/msg00078.html
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL
Let me see if I understand. The reason this bug is not going to be
fixed is:
* Only some of the software distributed by Debian and Canonical under the GNU
General Public License Version 2 includes a clause that says you can use future
versions of that license AND
* Some of the libraries have
nutznbolts: Where do you see something saying 'this bug is not going to
be fixed?'
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until
ubuntu-treblig: go to
https://bugs.launchpad.net/ubuntu/+source/gnutls26/+bug/926350
and search for: Colin Watson: Needs Information on 2012-02-11
then explain just how that information will be provided.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which
ubuntu-treblig: when you can answer my question then I will be able to
answer yours.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries
nutznboltz: OK, that question is best answered by Colin, you might want
to add your question to the comment field on the review. (I don't know
the answer)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
I'm beginning to suspect that the best answer is to not ask any more
questions.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until
nutznbolts: Please keep asking questions; but please be nice about it - I'm
just triaging this bug, I've not worked on this package and don't know the
answers - and there are lots and lots of important bugs in the database.
License problems are always a bit hairy, and Colin is right to ask that
Added regression-release tag based on advice in
https://wiki.ubuntu.com/QATeam/RegressionTracking
** Tags added: regression-update
** Tags removed: regression-update
** Tags added: regression-release
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
** Description changed:
+ == Regression details ==
+ Discovered in version: 12.04 LTS
+ Last known good version: depends. 9.04 Jaunty the last one before a
work-around became necessary. 11.10 was the last one that worked when you used
the work-around.
+
If your account is an LDAP one and
** Description changed:
== Regression details ==
- Discovered in version: 12.04 LTS
- Last known good version: depends. 9.04 Jaunty the last one before a
work-around became necessary. 11.10 was the last one that worked when you used
the work-around.
+ Discovered in version: 2.12.14-5ubuntu2
I tried installing sssd and the error message only prints the first
line:
$ sudo id
sudo: setresuid(ROOT_UID, ROOT_UID, ROOT_UID): Operation not permitted
The sssd.conf file is a copy of one that works on CentOS 6.
--
You received this bug notification because you are a member of Ubuntu
Bugs,
That was with the libgcrypt11 GnuTLS package (2.12.14-5ubuntu2).
Once I switch back to a GnuTLS with nettle then sssd works, supporting
sudo.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
** Changed in: gnutls26 (Debian)
Status: Unknown = New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until gnutls26 is
rebuilt
** Also affects: gnutls26 (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658739
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Debian bug for this issue:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658739
** Bug watch added: Debian Bug tracker #658739
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658739
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
Has a severe impact on a small portion of Ubuntu users (estimated) -
High
** Changed in: gnutls26 (Ubuntu)
Importance: Undecided = High
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
@ubuntu-treblig I do so appreciate your wisdom.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until gnutls26 is
rebuilt with nettle
** Description changed:
If your account is an LDAP one and your LDAP client connects to its LDAP
server via SSL then running setuid programs from your account fail since
libgcrypt11 is horribly broken and upstream GnuTLS no longer recommends using
it as the backend crypto library:
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: gnutls26 (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
** Branch linked: lp:~nutznboltz/ubuntu/precise/gnutls26/fix-lp926350
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until gnutls26 is
PPA with patch for the benefit of other affected people:
https://launchpad.net/~nutznboltz/+archive/gnutls26-with-nettle
** Description changed:
If your account is an LDAP one and your LDAP client connects to its LDAP
server via SSL then running setuid programs from your account fail since
32 matches
Mail list logo