Hi, OpenLDAP CVS has just added support for a new LDAP option LDAP_OPT_X_NOCANON. This option turns off host canonicalization based on reverse DNS in OpenLDAP. The attached patch makes this option available in python-ldap.
One use case for this option is environments where you don't need reverse DNS for canonicalization, or where you have server-side canonicalization. This works great in Windows environments, especially so because there reverse DNS is often wrong. If you combine this LDAP option with the setting "rdns = no" in your /etc/krb5.conf, you are now able to use SASL/GSSAPI to authenticate to an LDAP server that has no or no proper reverse DNS. Regards, Geert
python-ldap-2.3.5-canon.patch
Description: Binary data
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Python-LDAP-dev mailing list Python-LDAP-dev@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/python-ldap-dev
