Loris Santamaria wrote:
El jue, 27-08-2009 a las 21:31 -0400, Rob Crittenden escribió:
Loris Santamaria wrote:
El mié, 26-08-2009 a las 14:13 -0400, Rob Crittenden escribió:
This enables an ldapi listening socket in the LDAP server and configures
the management framework to use it instead of
Pavel Zuna wrote:
Fixes bug 519481.
Pavel
ack, pushed to master
rob
smime.p7s
Description: S/MIME Cryptographic Signature
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Add an option so we can generate a new cert for a CA. This is so we can
ultimately fix the missing CA basic constraint but it will also allow
the CA to be renewed.
This also fixes a small bug when generating the CA basic constraint. It
wasn't getting set as Critical because somehow I had it
Here is just a proposed solution.
The problem is that the CA we created up until now lacked the CA basic
constraint which means that newer releases of NSS don't consider it a
valid CA. This also means that Firefox 3.5 won't work with IPA 1.x.
What this script does is generates a certificate
The ldapi code I committed yesterday didn't work with SELinux enabled.
This patch addresses that.
On Python 2.5+ systems the mgmt framework didn't work with SELinux
enabled because of the ctypes module. It does all sorts of crazy stuff
which makes SELinux absolutely freak out (it tries to
On Fri, 2009-08-28 at 13:38 -0400, Rob Crittenden wrote:
Add an option so we can generate a new cert for a CA. This is so we
can
ultimately fix the missing CA basic constraint but it will also allow
the CA to be renewed.
This also fixes a small bug when generating the CA basic constraint.