[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap_ntlm_bind patch from Evolution

On Fri, 2007-12-21 at 13:06 -0800, Russ Allbery wrote:
> The Debian packaging of OpenLDAP has been carrying around the attached
> patch for many years now, and I'd really like to make it go away.  Adding
> new functions to the exposed ABI of a library is really not kosher.
> However, it looks like Evolution really does use this patch for its
> Exchange addressbook feature, it falls back on doing simple binds with
> passwords without it, and it is apparently still a recommended patch.  I'm
> attaching the patch as shipped with the evolution-exchange package,
> although the code that actually uses it is now in evolution-data-server.
> What should we do with this?  Is what Evolution wants to do just broken?
> Obsolete in some way?  Is there some other API that they could now use?
> I'm happy to file bugs against the corresponding Debian packages so that
> we can get rid of this patch, but I don't know what to tell them and don't
> even entirely understand what they're trying to accomplish.

Given that Samba3 has done this with native OpenLDAP for ages, I really
never understood what they were trying to do.  I checked out the code
once, in the hope of giving them a patch to fix it up, but never got

I think I never quite got over them using their own hand-spun NTLM...

Andrew Bartlett

Andrew Bartlett
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.

Attachment: signature.asc
Description: This is a digitally signed message part