--On Tuesday, November 14, 2006 6:41 PM -0800 Russ Allbery <[EMAIL PROTECTED]>
wrote:
Based on my discussions with Howard, I don't think your patch does what
you think it does.
So, what does it do, then? How doesn't it work? What would work instead
given the above constraint?
I'll note I opened ITS#4750 upstream on this issue. Howard has said that
if a good security argument can be made, it could be committed into the
current (2.3+ releases). The libldap API is not likely to be re-written
for a while, so if this is an issue Debian will continue to want addressed
going forward, the best solution is to get it fixed there. Particuarly
with the GnuTLS integration that is happening, which will finally allow the
2.1 libraries to be pulled in the release after etch.
Simply email to:
[EMAIL PROTECTED]
Subject must contain:
(ITS#4750)
--Quanah
--
Quanah Gibson-Mount
Principal Software Developer
ITS/Shared Application Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
