Enhancement Advisory Red Hat Directory Server enhancement update

Advisory: RHEA-2009:0455-2
Type: Product Enhancement Advisory
Severity: N/A
Issued on: 2009-04-29
Last updated on: 2009-04-29
Affected Products: Red Hat Directory Server v8 EL4
Red Hat Directory Server v8 EL5
OVAL: N/A

Details

Enhanced Red Hat Directory Server and related packages are now available.

Red Hat Directory Server is an LDAPv3-compliant directory server. The
redhat-ds-base package includes the LDAP server and command line utilities
for server administration.

These updated Red Hat Directory Server packages have many new features:

* Added SASL Kerberos and Start TLS support for server connections,
including replication, chaining, Windows synchronization, and pass-through
authentication. Configuration attributes have been added or expanded to
enable the new server connection types.

* Added supported for Unix sockets (LDAPI) and autobind. With this update,
Directory Server's LDAP operations can run over Unix sockets. Enabling
LDAPI also allows the Directory Server to use autobind to authenticate
logged in Unix users to the Directory Server automatically, based on
their Unix credentials.

* Added the Distributed Numeric Assignment Plug-in to automatically manage
and assign number values for attributes. This also simplifies number range
management for multimaster replication.

* Added the MemberOf Plug-in and entry attributes to reflect group
membership in user entries automatically. Group membership is defined in
the group entry itself. The MemberOf Plug-in adds and manages a new
attribute, memberOf, on user entries so that user entries show all of the
groups to which the user is a member.

* Enabled dynamic schema reloads. Custom schema files can be added to an
instance and loaded on the fly by running a schema reload task or a new
schema reload script.

* Created two new cn=tasks entries for schema reload and memberOf tasks.
Each task has its own entry under the cn=tasks,cn=config
configuration entry in the server's DSE. A new task entry can be added,
with task-specific attributes, to initiate the task. As soon as the task
is completed, the task entry is removed.

* Enhanced the Get Effective Rights extended operation to allow options
for non-existent and operational attributes. A get effective rights
search returns the access permissions that one directory user has to a
directory entry or entries. This update adds additional flags to return
the rights for non-existent attributes and operational attributes for
the entry.

* Supports 64-bit integers for performance counters, even on 32-bit
systems. Several server, database, and SNMP counters had upper range
restrictions of 32-bit integers, but these could cycle too quickly for
accurate statistics monitoring on high-performance systems. Additionally, a
new configuration attribute was added to turn counters off and on.

* Added a new parameter to set the frequency that the Directory Servers
sends synchronization updates to an Active Directory sync peer.

* Added a new parameter to enable or disable unauthenticated binds. It is
possible for a users to attempt to bind to the directory using a username
but without giving a password. The server previously allowed that
unauthenticated bind to continue as an anonymous bind. The new parameter
allows administrators to set whether to allow anonymous access or cause
the bind attempt to fail.

These packages also contain many bug fixes for major features in Red Hat
Directory Server, including replication, synchronization, setup and
migration, command-line tools, the Java console, the admin server, and
password policy.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Directory Server v8 EL4
SRPMS:
adminutil-1.1.8-4.el4dsrv.src.rpm     8f022b5d902378dba5d163d52ad8adae
adminutil-1.1.8-4.el4dsrv.src.rpm     8f022b5d902378dba5d163d52ad8adae
fortitude-mod_nss-1.0.8-3.el4idm.src.rpm     b8925f6788349605cf4e1ad9b39addd8
fortitude-mod_nss-1.0.8-3.el4idm.src.rpm     b8925f6788349605cf4e1ad9b39addd8
idm-console-framework-1.1.3-10.el4idm.src.rpm     7f31466a77e08d489c8a301c25cf9055
idm-console-framework-1.1.3-10.el4idm.src.rpm     7f31466a77e08d489c8a301c25cf9055
jss-4.2.5-2.el4idm.src.rpm     fd2b5b9eb373292b696461623b1fbcd6
jss-4.2.5-2.el4idm.src.rpm     fd2b5b9eb373292b696461623b1fbcd6
mozldap6-6.0.5-2.el4idm.src.rpm     13601d476e134c78f05393fcf86f7fa4
mozldap6-6.0.5-2.el4idm.src.rpm     13601d476e134c78f05393fcf86f7fa4
perl-Mozilla-LDAP-1.5.2-5.el4idm.src.rpm     9eafbb79438fecdf598d219b61ab7658
perl-Mozilla-LDAP-1.5.2-5.el4idm.src.rpm     9eafbb79438fecdf598d219b61ab7658
redhat-admin-console-8.1.0-2.el4dsrv.src.rpm     47d4e3aa5c3b477067a077381f0f60b3
redhat-admin-console-8.1.0-2.el4dsrv.src.rpm     47d4e3aa5c3b477067a077381f0f60b3
redhat-ds-8.1.0-1.el4dsrv.src.rpm     dd12c1cf180dbf7f3fa5aca47c692ec6
redhat-ds-8.1.0-1.el4dsrv.src.rpm     dd12c1cf180dbf7f3fa5aca47c692ec6
redhat-ds-admin-8.1.0-9.el4dsrv.src.rpm     8f310ec520597e50b7bac84817bb872c
redhat-ds-admin-8.1.0-9.el4dsrv.src.rpm     8f310ec520597e50b7bac84817bb872c
redhat-ds-base-8.1.0-0.19.el4dsrv.src.rpm     2e2019139153789068eb5880af758d60
redhat-ds-base-8.1.0-0.19.el4dsrv.src.rpm     2e2019139153789068eb5880af758d60
redhat-ds-console-8.1.0-3.el4dsrv.src.rpm     ccd50f90abcef5376f6ce6bfaf3bfd5c
redhat-ds-console-8.1.0-3.el4dsrv.src.rpm     ccd50f90abcef5376f6ce6bfaf3bfd5c
redhat-idm-console-1.0.1-1.el4idm.src.rpm     870b6ef8a63794e88e543bbf9b717bc2
redhat-idm-console-1.0.1-1.el4idm.src.rpm     870b6ef8a63794e88e543bbf9b717bc2
svrcore-4.0.4-5.el4idm.src.rpm     e338487e7038f1e25b970ea97d33baae
svrcore-4.0.4-5.el4idm.src.rpm     e338487e7038f1e25b970ea97d33baae
 
IA-32:
adminutil-1.1.8-4.el4dsrv.i386.rpm     0a64d14d1367932036fa9163b407cd64
adminutil-1.1.8-4.el4dsrv.i386.rpm     0a64d14d1367932036fa9163b407cd64
adminutil-devel-1.1.8-4.el4dsrv.i386.rpm     46110fe100a10f61a54428ebe3499b64
adminutil-devel-1.1.8-4.el4dsrv.i386.rpm     46110fe100a10f61a54428ebe3499b64
fortitude-mod_nss-1.0.8-3.el4idm.i386.rpm     2f54acefb03cb86e568a5900e67026de
fortitude-mod_nss-1.0.8-3.el4idm.i386.rpm     2f54acefb03cb86e568a5900e67026de
idm-console-framework-1.1.3-10.el4idm.noarch.rpm     d5701e20da9b3226c8cadfe886b69299
idm-console-framework-1.1.3-10.el4idm.noarch.rpm     d5701e20da9b3226c8cadfe886b69299
jss-4.2.5-2.el4idm.i386.rpm     4888aab1576b6b3d9d09e6c84e77a68f
jss-4.2.5-2.el4idm.i386.rpm     4888aab1576b6b3d9d09e6c84e77a68f
mozldap6-6.0.5-2.el4idm.i386.rpm     6672c2b6d38ff339a20794d4b63bc3f6
mozldap6-6.0.5-2.el4idm.i386.rpm     6672c2b6d38ff339a20794d4b63bc3f6
mozldap6-devel-6.0.5-2.el4idm.i386.rpm     f4c56318d29110b2c96efb9152cb229c
mozldap6-devel-6.0.5-2.el4idm.i386.rpm     f4c56318d29110b2c96efb9152cb229c
mozldap6-tools-6.0.5-2.el4idm.i386.rpm     ae8be0d589bf1405dd79ad01ff766af0
mozldap6-tools-6.0.5-2.el4idm.i386.rpm     ae8be0d589bf1405dd79ad01ff766af0
perl-Mozilla-LDAP-1.5.2-5.el4idm.i386.rpm     cec69722b7fc8f83b83dd31e9902b920
perl-Mozilla-LDAP-1.5.2-5.el4idm.i386.rpm     cec69722b7fc8f83b83dd31e9902b920
redhat-admin-console-8.1.0-2.el4dsrv.noarch.rpm     a0b6ff97ac4dfd5319714aa23a4a3752
redhat-admin-console-8.1.0-2.el4dsrv.noarch.rpm     a0b6ff97ac4dfd5319714aa23a4a3752
redhat-ds-8.1.0-1.el4dsrv.i386.rpm     4c8d652c1b6bee3aa7a9cc729763b39f
redhat-ds-8.1.0-1.el4dsrv.i386.rpm     4c8d652c1b6bee3aa7a9cc729763b39f
redhat-ds-admin-8.1.0-9.el4dsrv.i386.rpm     c8f4bdcc8a604c55162224ad3eb32b73
redhat-ds-admin-8.1.0-9.el4dsrv.i386.rpm     c8f4bdcc8a604c55162224ad3eb32b73
redhat-ds-base-8.1.0-0.19.el4dsrv.i386.rpm     503feab7bd0da21b6b6e86569185009e
redhat-ds-base-8.1.0-0.19.el4dsrv.i386.rpm     503feab7bd0da21b6b6e86569185009e
redhat-ds-base-devel-8.1.0-0.19.el4dsrv.i386.rpm     d4a51ea448da0b7ca36fd150fd57da64
redhat-ds-base-devel-8.1.0-0.19.el4dsrv.i386.rpm     d4a51ea448da0b7ca36fd150fd57da64
redhat-ds-console-8.1.0-3.el4dsrv.noarch.rpm     04eb86ae47f5447e7f098bb8eee25a20
redhat-ds-console-8.1.0-3.el4dsrv.noarch.rpm     04eb86ae47f5447e7f098bb8eee25a20
redhat-idm-console-1.0.1-1.el4idm.i386.rpm     36a21cab47b05a24e1141fe95e4560df
redhat-idm-console-1.0.1-1.el4idm.i386.rpm     36a21cab47b05a24e1141fe95e4560df
svrcore-4.0.4-5.el4idm.i386.rpm     a7c586b437e5da2fa0c9d896b8845c33
svrcore-4.0.4-5.el4idm.i386.rpm     a7c586b437e5da2fa0c9d896b8845c33
svrcore-devel-4.0.4-5.el4idm.i386.rpm     9a04c66a99bb5aad1101abc34f3f4cc5
svrcore-devel-4.0.4-5.el4idm.i386.rpm     9a04c66a99bb5aad1101abc34f3f4cc5
 
x86_64:
adminutil-1.1.8-4.el4dsrv.x86_64.rpm     32517d172c65861851aee0fa5f914ee5
adminutil-1.1.8-4.el4dsrv.x86_64.rpm     32517d172c65861851aee0fa5f914ee5
adminutil-devel-1.1.8-4.el4dsrv.x86_64.rpm     b441e58cd35d71935b6565706b1d60b3
adminutil-devel-1.1.8-4.el4dsrv.x86_64.rpm     b441e58cd35d71935b6565706b1d60b3
fortitude-mod_nss-1.0.8-3.el4idm.x86_64.rpm     51e9e971524de1e8bacf3c98d989e835
fortitude-mod_nss-1.0.8-3.el4idm.x86_64.rpm     51e9e971524de1e8bacf3c98d989e835
idm-console-framework-1.1.3-10.el4idm.noarch.rpm     d5701e20da9b3226c8cadfe886b69299
idm-console-framework-1.1.3-10.el4idm.noarch.rpm     d5701e20da9b3226c8cadfe886b69299
jss-4.2.5-2.el4idm.x86_64.rpm     ccec6aec2b031f2415840ba2a58d038e
jss-4.2.5-2.el4idm.x86_64.rpm     ccec6aec2b031f2415840ba2a58d038e
mozldap6-6.0.5-2.el4idm.x86_64.rpm     56f51ecd976b184e88353f8a140ab7a8
mozldap6-6.0.5-2.el4idm.x86_64.rpm     56f51ecd976b184e88353f8a140ab7a8
mozldap6-devel-6.0.5-2.el4idm.x86_64.rpm     c5c93f5021ee82fe7ae46b2bdb552d1c
mozldap6-devel-6.0.5-2.el4idm.x86_64.rpm     c5c93f5021ee82fe7ae46b2bdb552d1c
mozldap6-tools-6.0.5-2.el4idm.x86_64.rpm     fb781a01fbec663b7a942776a37fb6e3
mozldap6-tools-6.0.5-2.el4idm.x86_64.rpm     fb781a01fbec663b7a942776a37fb6e3
perl-Mozilla-LDAP-1.5.2-5.el4idm.x86_64.rpm     5b6cb686f9359aac90dc618cf3172751
perl-Mozilla-LDAP-1.5.2-5.el4idm.x86_64.rpm     5b6cb686f9359aac90dc618cf3172751
redhat-admin-console-8.1.0-2.el4dsrv.noarch.rpm     a0b6ff97ac4dfd5319714aa23a4a3752
redhat-admin-console-8.1.0-2.el4dsrv.noarch.rpm     a0b6ff97ac4dfd5319714aa23a4a3752
redhat-ds-8.1.0-1.el4dsrv.x86_64.rpm     4ca7b813226eaa0d5f7d24dc5ed5e182
redhat-ds-8.1.0-1.el4dsrv.x86_64.rpm     4ca7b813226eaa0d5f7d24dc5ed5e182
redhat-ds-admin-8.1.0-9.el4dsrv.x86_64.rpm     8c9d71e4e4c7dce141f55ebeef4e79df
redhat-ds-admin-8.1.0-9.el4dsrv.x86_64.rpm     8c9d71e4e4c7dce141f55ebeef4e79df
redhat-ds-base-8.1.0-0.19.el4dsrv.x86_64.rpm     1a05bfef3909573d030dce7c4acc0545
redhat-ds-base-8.1.0-0.19.el4dsrv.x86_64.rpm     1a05bfef3909573d030dce7c4acc0545
redhat-ds-base-devel-8.1.0-0.19.el4dsrv.x86_64.rpm     82baa2000a505181c3d6435692bbc908
redhat-ds-base-devel-8.1.0-0.19.el4dsrv.x86_64.rpm     82baa2000a505181c3d6435692bbc908
redhat-ds-console-8.1.0-3.el4dsrv.noarch.rpm     04eb86ae47f5447e7f098bb8eee25a20
redhat-ds-console-8.1.0-3.el4dsrv.noarch.rpm     04eb86ae47f5447e7f098bb8eee25a20
redhat-idm-console-1.0.1-1.el4idm.x86_64.rpm     071cc332e82e790e89a122cd133009fd
redhat-idm-console-1.0.1-1.el4idm.x86_64.rpm     071cc332e82e790e89a122cd133009fd
svrcore-4.0.4-5.el4idm.x86_64.rpm     fcf72217bbd3b450676409905ac61016
svrcore-4.0.4-5.el4idm.x86_64.rpm     fcf72217bbd3b450676409905ac61016
svrcore-devel-4.0.4-5.el4idm.x86_64.rpm     d12251e307ac4f24e83de5e56c442589
svrcore-devel-4.0.4-5.el4idm.x86_64.rpm     d12251e307ac4f24e83de5e56c442589
 
Red Hat Directory Server v8 EL5
SRPMS:
adminutil-1.1.8-2.el5dsrv.src.rpm     1f743766df176cafd1624f9caff17a19
idm-console-framework-1.1.3-9.el5idm.src.rpm     72540d5875493912af34965a9864a92a
jss-4.2.5-1.el5idm.src.rpm     e876e152f04a7be1a6414d633b31e89b
redhat-admin-console-8.1.0-2.el5dsrv.src.rpm     28c38977805f6520be8c11af4fc5756f
redhat-ds-8.1.0-1.el5dsrv.src.rpm     dbaa05e71c46a08a821675c21e93ba07
redhat-ds-admin-8.1.0-9.el5dsrv.src.rpm     ed1c906f55371e08a5a35d376ef8be03
redhat-ds-base-8.1.0-0.14.el5dsrv.src.rpm     61d8b4ca25eaf69b9f03098c7f876147
redhat-ds-console-8.1.0-5.el5dsrv.src.rpm     ce5c22a0f9ed985262048b2c73181e42
redhat-idm-console-1.0.1-1.el5idm.src.rpm     dc465fd06aaddd7303a62949b52ea50f
 
IA-32:
adminutil-1.1.8-2.el5dsrv.i386.rpm     c755996836ee8244d050f8b98a2ae35f
adminutil-devel-1.1.8-2.el5dsrv.i386.rpm     e9015c8469ebce781468d10c3112b85e
idm-console-framework-1.1.3-9.el5idm.noarch.rpm     91bc49f169867438b03d1d1a5582d3c5
jss-4.2.5-1.el5idm.i386.rpm     7286a22553491974227304cfab2a5db3
redhat-admin-console-8.1.0-2.el5dsrv.noarch.rpm     e913bb29c74620c3e65d1080eaff84a4
redhat-ds-8.1.0-1.el5dsrv.i386.rpm     28210babd2dfb65d8cd5cc11c1d0edb4
redhat-ds-admin-8.1.0-9.el5dsrv.i386.rpm     7b2f6648668d54229099f55fe79620ce
redhat-ds-base-8.1.0-0.14.el5dsrv.i386.rpm     fb3e447dcc3dca035311ab18ab4fd632
redhat-ds-base-devel-8.1.0-0.14.el5dsrv.i386.rpm     836c80083f7c473272532e23b996e18a
redhat-ds-console-8.1.0-5.el5dsrv.noarch.rpm     abe562a665c5e624596e6bef8bd2f2f5
redhat-idm-console-1.0.1-1.el5idm.i386.rpm     330a94e86f5ff9a16c8f84a2e6106afc
 
x86_64:
adminutil-1.1.8-2.el5dsrv.x86_64.rpm     0fdb2e7ad26370cd17621510f84d39c1
adminutil-devel-1.1.8-2.el5dsrv.x86_64.rpm     9c395115f1ef73214abded13066f0873
idm-console-framework-1.1.3-9.el5idm.noarch.rpm     91bc49f169867438b03d1d1a5582d3c5
jss-4.2.5-1.el5idm.x86_64.rpm     f81293fa1b42d4a3c41c0060324f882e
redhat-admin-console-8.1.0-2.el5dsrv.noarch.rpm     e913bb29c74620c3e65d1080eaff84a4
redhat-ds-8.1.0-1.el5dsrv.x86_64.rpm     621f9549ad221ed67e0299148bfc00b0
redhat-ds-admin-8.1.0-9.el5dsrv.x86_64.rpm     156c2f6202c0c8c547627dffe8a5d39e
redhat-ds-base-8.1.0-0.14.el5dsrv.x86_64.rpm     344e7ad8496379ee27b8b192caaeb712
redhat-ds-base-devel-8.1.0-0.14.el5dsrv.x86_64.rpm     741fbbcf3394aa10d3272a3e1c570832
redhat-ds-console-8.1.0-5.el5dsrv.noarch.rpm     abe562a665c5e624596e6bef8bd2f2f5
redhat-idm-console-1.0.1-1.el5idm.x86_64.rpm     9b6e411de834eb3d6b453c28ab719934
 
(The unlinked packages above are only available from the Red Hat Network)

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/