At the moment we have two packages in the book which recommend OpenLDAP, and in general people who do not build recommended deps tend to get told to do so if they have problems. Sometimes a recommendation is there because you will have to set other configure switches if the package is missing, others because we generally follow upstream, and a last batch are to provide useful features.
In this case, OpenLDAP is recommended by libreoffice and kdepimlibs. For libreoffice, the general note says: Most of these packages are recommended because if they're not installed, the build process will compile and install its own (often older) version. That is true, as far as it goes, but I feel bad about recommending this package when for many people it will provide nothing useful in libreoffice. In this case, I do not see what problems can arise from an old version if you are _not_ connecting to an LDAP server ? So, I would like to add '(if connecting to an LDAP server)' to this one recommendation. For kdepimlibs, the situation is slightly different - the package builds ok with out it, but cmake mentions that a recommended dependency is missing. I suppose that whoever maintains this uses OpenLDAP in a commercial system. Again, I would like to add '(if connecting to an LDAP server)' to this recommendation. I've always been happy to use the shipped version from libreoffice, and I've now built the current and previous versions of kdepimlibs without OpenLDAP. But on the other hand, I don't use or build any of the kdepim programs. Does anybody have strong feelings either way, or see a potential vulnerability flaw, or inadequacy in kdepim, in my suggestion ? ĸen -- Nanny Ogg usually went to bed early. After all, she was an old lady. Sometimes she went to bed as early as 6 a.m. -- http://lists.linuxfromscratch.org/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
