On 05/07/2013 08:04 PM, Rob Crittenden wrote:
Simo Sorce wrote:
On Tue, 2013-05-07 at 18:34 +0200, Martin Kosek wrote:
On 05/07/2013 04:41 PM, Rob Crittenden wrote:
See the commit message for all the gory details but the bottom line is that
mod_auth_kerb doesn't work with DIR ccache which is
On 04/16/2013 12:44 PM, Petr Spacek wrote:
Hello,
Improve error logging for zones with idnsAllowDynUpdate == FALSE.
Zones with dynamic updates disabled are re-configured with empty
update policy string, so the update is refused by BIND and
an error is logged.
ACK.
The patch looks
On 04/16/2013 12:45 PM, Petr Spacek wrote:
Hello,
Explicitly return SERVFAIL if PTR synchronization is misconfigured.
SERVFAIL will be returned if PTR synchronization is enabled
in forward zone but reverse zone has dynamic updates disabled.
What the patch does little bit differs from
Hello,
On 7.5.2013 19:50, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
[...]
diff --git a/ipalib/plugins/dns.py b/ipalib/plugins/dns.py
index
On 05/09/2013 12:35 PM, Petr Spacek wrote:
Hello,
On 7.5.2013 19:50, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
[...]
diff --git a/ipalib/plugins/dns.py b/ipalib/plugins/dns.py
index
On 9.5.2013 12:44, Ana Krivokapic wrote:
On 05/09/2013 12:35 PM, Petr Spacek wrote:
Hello,
On 7.5.2013 19:50, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
[...]
diff --git a/ipalib/plugins/dns.py b/ipalib/plugins/dns.py
On 05/07/2013 07:50 PM, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
See Petr Špaček's mail for normal zones.
Also when adding a reverse zone we should not ask:
$ ipa dnszone-add --name-from-ip=80.142.15.0/24
On 04/18/2013 11:04 AM, Petr Spacek wrote:
Hello,
Clean up PTR record synchronization code and make it more robust.
PTR record synchronization was split to smaller functions.
Input validation, error handling and logging was improved
significantly.
ACK.
The patch looks OK!
Regards,
On 7.5.2013 09:36, Tomas Hozza wrote:
On 04/09/2013 03:27 PM, Petr Spacek wrote:
Hello,
Improve LDAP error logging.
Diagnostic error message is logged when it is available.
Plugin with this patch produces messages like:
LDAP error: Server is unwilling to perform: Minimum SSF not met.: bind
On 04/18/2013 04:58 PM, Petr Spacek wrote:
Hello,
Do not delete whole node during PTR record synchronization.
https://fedorahosted.org/bind-dyndb-ldap/ticket/115
ACK.
The patch looks good.
Regards,
Tomas Hozza
___
Freeipa-devel mailing
This should get to 3.2 GA.
--
ipa-dns-install crashed when it was run on a CA-less server.
https://fedorahosted.org/freeipa/ticket/3617
From 6d06a7e562694efeea55bbc937a71e058dacd7d1 Mon Sep 17 00:00:00 2001
From: Martin Kosek mko...@redhat.com
Date: Thu, 9 May 2013 14:04:13 +0200
Subject:
On 05/09/2013 12:45 PM, Petr Viktorin wrote:
On 05/07/2013 07:50 PM, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
See Petr Špaček's mail for normal zones.
Also when adding a reverse zone we should not ask:
$ ipa
On 04/19/2013 12:44 PM, Petr Spacek wrote:
Hello,
Disallow all zone transfers/queries if transfer/query policy
configuration failed.
Without this patch the old policy stays in effect
if re-configuration with the new policy failed.
https://fedorahosted.org/bind-dyndb-ldap/ticket/116
On 05/09/2013 02:06 PM, Martin Kosek wrote:
This should get to 3.2 GA.
--
ipa-dns-install crashed when it was run on a CA-less server.
https://fedorahosted.org/freeipa/ticket/3617
This solves the issue, ACK
--
Petr³
___
Freeipa-devel mailing
On 9.5.2013 10:59, Tomas Hozza wrote:
On 04/16/2013 12:45 PM, Petr Spacek wrote:
Hello,
Explicitly return SERVFAIL if PTR synchronization is misconfigured.
SERVFAIL will be returned if PTR synchronization is enabled
in forward zone but reverse zone has dynamic updates disabled.
What the
On 05/09/2013 02:39 PM, Petr Viktorin wrote:
On 05/09/2013 02:06 PM, Martin Kosek wrote:
This should get to 3.2 GA.
--
ipa-dns-install crashed when it was run on a CA-less server.
https://fedorahosted.org/freeipa/ticket/3617
This solves the issue, ACK
Thanks. Pushed to master.
On 9.5.2013 14:53, Petr Spacek wrote:
On 9.5.2013 10:59, Tomas Hozza wrote:
On 04/16/2013 12:45 PM, Petr Spacek wrote:
Hello,
Explicitly return SERVFAIL if PTR synchronization is misconfigured.
SERVFAIL will be returned if PTR synchronization is enabled
in forward zone but reverse zone has
On 9.5.2013 15:14, Martin Kosek wrote:
On 05/09/2013 02:39 PM, Petr Viktorin wrote:
On 05/09/2013 02:06 PM, Martin Kosek wrote:
This should get to 3.2 GA.
--
ipa-dns-install crashed when it was run on a CA-less server.
https://fedorahosted.org/freeipa/ticket/3617
This solves the issue,
On 05/09/2013 05:44 PM, Jan Cholasta wrote:
On 9.5.2013 15:14, Martin Kosek wrote:
On 05/09/2013 02:39 PM, Petr Viktorin wrote:
On 05/09/2013 02:06 PM, Martin Kosek wrote:
This should get to 3.2 GA.
--
ipa-dns-install crashed when it was run on a CA-less server.
On 9.5.2013 17:57, Martin Kosek wrote:
On 05/09/2013 05:44 PM, Jan Cholasta wrote:
Sorry for this, but NACK. With this patch ipa-ca records are not created for
existing masters unless ipa-dns-install is run on a replica which has CA
configured. You should instead put the ldap.get_entries() call
Hello,
It's almost time to release, so let's merge the current state of
translations. Since last release, there has been significant activity in
Spanish, French, and Ukrainian.
Thanks to all translators!
The patch is again quite large, so I have not attached it. Please
download it from
On 05/09/2013 02:10 PM, Martin Kosek wrote:
On 05/09/2013 12:45 PM, Petr Viktorin wrote:
On 05/07/2013 07:50 PM, Ana Krivokapic wrote:
Prompt for nameserver IP address in dnszone-add
https://fedorahosted.org/freeipa/ticket/3603
See Petr Špaček's mail for normal zones.
Also when adding a
Jan Cholasta wrote:
On 9.5.2013 17:57, Martin Kosek wrote:
On 05/09/2013 05:44 PM, Jan Cholasta wrote:
Sorry for this, but NACK. With this patch ipa-ca records are not
created for
existing masters unless ipa-dns-install is run on a replica which has CA
configured. You should instead put the
23 matches
Mail list logo
