Public bug reported:
If your account is an LDAP one and your LDAP client connects to its LDAP server
via SSL then running setuid programs from your account fail since libgcrypt11
is horribly broken and upstream GnuTLS no longer recommends using it as the
backend crypto library:
http://lists.debian.org/debian-legal/2011/02/msg00006.html
In the past it was possible to work around this by using nscd but that
work around no longer has any effect.
When I rebuild gnutls26 with nettle I am able to use setuid binaries
from my LDAP account which connects via SSL to its LDAP server.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libgnutls26 2.12.14-5ubuntu2
ProcVersionSignature: Ubuntu 3.2.0-12.21-generic 3.2.2
Uname: Linux 3.2.0-12-generic i686
ApportVersion: 1.91-0ubuntu1
Architecture: i386
Date: Fri Feb 3 16:22:47 2012
InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release i386 (20111011)
ProcEnviron:
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: gnutls26
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: gnutls26 (Ubuntu)
Importance: Undecided
Status: New
** Tags: apport-bug i386 precise running-unity
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/926350
Title:
LDAP account via SSL cannot use setuid binaries until gnutls26 is
rebuilt with nettle not libgcrypt11
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnutls26/+bug/926350/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
