Re: [Freeipa-devel] [PATCH] Permission MOD command fix

On 18.2.2014 21:03, Martin Kosek wrote: On 02/18/2014 06:52 PM, Petr Viktorin wrote: On 02/18/2014 06:46 PM, Jan Cholasta wrote: Hi, On 18.2.2014 18:40, Nathaniel McCallum wrote: On Tue, 2014-02-18 at 12:31 -0500, Adam Misnyovszki wrote: Hi, this patch fixes permission-mod command returning

Re: [Freeipa-devel] [PATCH 0025] Add support to ipa-kdb for keyless principals

On 02/18/2014 09:02 PM, Alexander Bokovoy wrote: On Tue, 12 Nov 2013, Nathaniel McCallum wrote: https://fedorahosted.org/freeipa/ticket/3779 ACK Pushed to master: b769d1c18678b5eede7505dec7938f6836070044 -- Petr³ ___ Freeipa-devel mailing list

Re: [Freeipa-devel] [PATCH 0025] Add support to ipa-kdb for keyless principals

On Tue, 2013-11-12 at 10:59 -0500, Nathaniel McCallum wrote: diff --git a/util/ipa_krb5.c b/util/ipa_krb5.c index 934fd27d80cdd846f4de631b2dd587b0ad0f325c..cc84f9920a7b105c926cb765b435c0fbdfac 100644 --- a/util/ipa_krb5.c +++ b/util/ipa_krb5.c @@ -296,6 +296,9 @@ void

Re: [Freeipa-devel] [PATCH 0025] Add support to ipa-kdb for keyless principals

On Wed, 2014-02-19 at 15:24 +0200, Alexander Bokovoy wrote: On Wed, 19 Feb 2014, Simo Sorce wrote: On Tue, 2013-11-12 at 10:59 -0500, Nathaniel McCallum wrote: diff --git a/util/ipa_krb5.c b/util/ipa_krb5.c index

[Freeipa-devel] [PATCH] 0468 permission-mod: Do not copy member attributes to new entry

Hello, This fixes https://fedorahosted.org/freeipa/ticket/4178 -- Petr³ From 85222e02ce57224ea661c990c69efecbf7907a74 Mon Sep 17 00:00:00 2001 From: Petr Viktorin pvikt...@redhat.com Date: Wed, 19 Feb 2014 14:18:58 +0100 Subject: [PATCH] permission-mod: Do not copy member attributes to new entry

Re: [Freeipa-devel] [PATCH 0015] Add wait_for_dns option to default.conf

On 18.2.2014 17:34, Nathaniel McCallum wrote: On Tue, 2014-02-18 at 17:06 +0100, Petr Viktorin wrote: On 02/18/2014 04:45 PM, Petr Spacek wrote: Hello, Add wait_for_dns option to default.conf. This option makes record changes in DNS tree synchronous. IPA calls will wait until new data are

Re: [Freeipa-devel] [PATCH] 0468 permission-mod: Do not copy member attributes to new entry

On 19.2.2014 14:45, Petr Viktorin wrote: Hello, This fixes https://fedorahosted.org/freeipa/ticket/4178 Thanks, ACK. -- Jan Cholasta ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel

[Freeipa-devel] [PATCH 0153] ipatests: Fix incorrect order of operations when restoring

Hi, When restoring files from backup, we do use an incorrect order of operations - we first restore SELinux context and then copy the files from backup, when we need to do the exact opposite. https://fedorahosted.org/freeipa/ticket/4133 From 3c1da9e7265bfb303cd4b9751c5b32b04d502431 Mon Sep 17

[Freeipa-devel] [PATCH] ipactl can not restart ipa services if current status is stopped

Hi, fixed by starting the directory server in the beginning of restarting if it is not currently running to enable fetching running services, although former restart script didn't check that. Also added a check, that if the directory server started at the beginning, there is no need to restart

Re: [Freeipa-devel] [PATCH 0153] ipatests: Fix incorrect order of operations when restoring

On Wed, Feb 19, 2014 at 04:37:05PM +0100, Tomas Babej wrote: Hi, When restoring files from backup, we do use an incorrect order of operations - we first restore SELinux context and then copy the files from backup, when we need to do the exact opposite.

Re: [Freeipa-devel] [PATCHES] 0464-0466 Multivalued targetfilter

On 02/19/2014 10:44 AM, Petr Viktorin wrote: On 02/18/2014 08:02 PM, Petr Viktorin wrote: On 02/18/2014 09:42 AM, Martin Kosek wrote: On 02/13/2014 01:12 PM, Petr Viktorin wrote: Hello, These patches fix https://fedorahosted.org/freeipa/ticket/4074 Design:

Re: [Freeipa-devel] [PATCH] ipactl can not restart ipa services if current status is stopped

On 02/19/2014 04:43 PM, Adam Misnyovszki wrote: Hi, fixed by starting the directory server in the beginning of restarting if it is not currently running to enable fetching running services, although former restart script didn't check that. Also added a check, that if the directory server

Re: [Freeipa-devel] [PATCH 0015] Add wait_for_dns option to default.conf

On Wed, 2014-02-19 at 17:10 +0100, Petr Spacek wrote: On 19.2.2014 15:11, Petr Spacek wrote: On 18.2.2014 17:34, Nathaniel McCallum wrote: On Tue, 2014-02-18 at 17:06 +0100, Petr Viktorin wrote: On 02/18/2014 04:45 PM, Petr Spacek wrote: Hello, Add wait_for_dns option to default.conf.

[Freeipa-devel] [PATCH]Add -f option to ipactl

Hi, I reviewed this old patch: If an error occurs in the start up sequence in ipactl start/restart, all the services are stopped. Using the --force/-f option prevents stopping of services that have successfully started.

[Freeipa-devel] OpenSSH with PKCS#11 for key storage

Hello list, I just came across this page: http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards If I understand correctly, it allows you to store use your personal SSH keys via PKCS#11 interface. It sounds like a killer feature to me!

Re: [Freeipa-devel] OpenSSH with PKCS#11 for key storage

On 02/19/2014 01:49 PM, Petr Spacek wrote: Hello list, I just came across this page: http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards If I understand correctly, it allows you to store use your personal SSH keys via PKCS#11

Re: [Freeipa-devel] [PATCH]Add -f option to ipactl

On 19.2.2014 21:10, Dmitri Pal wrote: On 02/19/2014 11:58 AM, Adam Misnyovszki wrote: Hi, I reviewed this old patch: If an error occurs in the start up sequence in ipactl start/restart, all the services are stopped. Using the --force/-f option prevents stopping of services that have

Re: [Freeipa-devel] [PATCH]Add -f option to ipactl

On 02/19/2014 11:58 AM, Adam Misnyovszki wrote: Hi, I reviewed this old patch: If an error occurs in the start up sequence in ipactl start/restart, all the services are stopped. Using the --force/-f option prevents stopping of services that have successfully started.

Re: [Freeipa-devel] OpenSSH with PKCS#11 for key storage

On 19.2.2014 21:13, Dmitri Pal wrote: On 02/19/2014 01:49 PM, Petr Spacek wrote: Hello list, I just came across this page: http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards If I understand correctly, it allows you to store use

Re: [Freeipa-devel] [PATCHES] OTP Patches

On Mon, 17 Feb 2014, Alexander Bokovoy wrote: On Thu, 13 Feb 2014, Alexander Bokovoy wrote: On Wed, 12 Feb 2014, Nathaniel McCallum wrote: Through the review process, patches are getting shifted around, added, deleted, etc. So I'm now just going to be posting all the patches as an ordered set.

Re: [Freeipa-devel] [PATCHES] OTP Patches

On Wed, 19 Feb 2014, Alexander Bokovoy wrote: On Mon, 17 Feb 2014, Alexander Bokovoy wrote: On Thu, 13 Feb 2014, Alexander Bokovoy wrote: On Wed, 12 Feb 2014, Nathaniel McCallum wrote: Through the review process, patches are getting shifted around, added, deleted, etc. So I'm now just going

Re: [Freeipa-devel] [PATCH]Add -f option to ipactl

On 02/19/2014 03:13 PM, Petr Spacek wrote: On 19.2.2014 21:10, Dmitri Pal wrote: On 02/19/2014 11:58 AM, Adam Misnyovszki wrote: Hi, I reviewed this old patch: If an error occurs in the start up sequence in ipactl start/restart, all the services are stopped. Using the --force/-f option

Re: [Freeipa-devel] OpenSSH with PKCS#11 for key storage

On 02/19/2014 03:30 PM, Petr Spacek wrote: On 19.2.2014 21:13, Dmitri Pal wrote: On 02/19/2014 01:49 PM, Petr Spacek wrote: Hello list, I just came across this page: http://www.gooze.eu/howto/using-openssh-with-smartcards/using-ssh-authentication-agent-ssh-add-with-smartcards If I