diff options
Diffstat (limited to 'TODO')
| -rw-r--r-- | TODO | 19 |
1 files changed, 7 insertions, 12 deletions
@@ -1,25 +1,15 @@ probably before we can call this stable --------------------------------------- -* fix race condition when setting signal mask in common/tio.c - (using pthread_sigmask() adds a dependency on the pthread library, - we should probably just do locking) * find problem with reachability of LDAP server -* find out why HAVE_GSSPAI is not always set to what configure outputs -* have the daemon run under a special uid/gid +* do not require ssl on if ldaps:// URLs are used other items ----------- -* set up (test) connection to LDAP server before creating socket -* Debian packaging: maybe remove stuff from /etc/nsswitch.conf on remove or - purge (maybe prompt?) * probably document that you should use libpam-ldap for authentication without exposing the passwords through NSS * document test suite (instructions for setting up environment (server), LDIF file, nsswitch.conf and nss-ldapd.conf) * write more unit tests -* maybe support bootparams (check README also) -* maybe support publickey (check README also) -* maybe support netmasks (check README also) * maybe implement a connection object in the myldap module that is shared by different sessions (sessions need to be cleaned up) * add sanity checking code (e.g. not too large buffer allocation and checking @@ -54,5 +44,10 @@ other items install NSS library in system path * only parse configuration options if they are available on the platform * have some more general mechanism to disable NSS module in nslcd -* do not use LDAP_DEPRECATED enabled functions * support searchbase autodetection +* start the LDAP search and connection in myldap_get_entry() instead of + in myldap_search() +* maybe use datagram sockets for NSS/nslcd communication +* support multiple search bases +* support memberOf attribute in passwd entries that map to groups +* get tls_checkpeer working in combination with ssl on |