Package sssd: Information

    Source package: sssd
    Version: 2.9.4-alt2
    Build time:  Mar 15, 2024, 07:42 AM
    Category: System/Servers
    Report package bug
    Home page: https://pagure.io/SSSD/sssd
    License: GPLv3+
    Summary: System Security Services Daemon
    Description: 
    Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable backend system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.

The sssd subpackage is a meta-package that contains the deamon as well as all
the existing back ends.
    List of rpms provided by this srpm:
    libipa_hbac (loongarch64)
    libipa_hbac-debuginfo (loongarch64)
    libipa_hbac-devel (loongarch64)
    libsss_autofs (loongarch64)
    libsss_autofs-debuginfo (loongarch64)
    libsss_certmap (loongarch64)
    libsss_certmap-debuginfo (loongarch64)
    libsss_certmap-devel (loongarch64)
    libsss_idmap (loongarch64)
    libsss_idmap-debuginfo (loongarch64)
    libsss_idmap-devel (loongarch64)
    libsss_nss_idmap (loongarch64)
    libsss_nss_idmap-debuginfo (loongarch64)
    libsss_nss_idmap-devel (loongarch64)
    libsss_sudo (loongarch64)
    libsss_sudo-debuginfo (loongarch64)
    python3-module-ipa_hbac (loongarch64)
    python3-module-ipa_hbac-debuginfo (loongarch64)
    python3-module-sss (loongarch64)
    python3-module-sss-debuginfo (loongarch64)
    python3-module-sss-murmur (loongarch64)
    python3-module-sss-murmur-debuginfo (loongarch64)
    python3-module-sss_nss_idmap (loongarch64)
    python3-module-sss_nss_idmap-debuginfo (loongarch64)
    python3-module-sssd (loongarch64)
    python3-module-sssdconfig (noarch)
    sssd (loongarch64)
    sssd-ad (loongarch64)
    sssd-ad-debuginfo (loongarch64)
    sssd-client (loongarch64)
    sssd-client-debuginfo (loongarch64)
    sssd-dbus (loongarch64)
    sssd-dbus-debuginfo (loongarch64)
    sssd-debuginfo (loongarch64)
    sssd-idp (loongarch64)
    sssd-idp-debuginfo (loongarch64)
    sssd-ipa (loongarch64)
    sssd-ipa-debuginfo (loongarch64)
    sssd-kcm (loongarch64)
    sssd-kcm-debuginfo (loongarch64)
    sssd-krb5 (loongarch64)
    sssd-krb5-common (loongarch64)
    sssd-krb5-common-debuginfo (loongarch64)
    sssd-krb5-debuginfo (loongarch64)
    sssd-ldap (loongarch64)
    sssd-ldap-debuginfo (loongarch64)
    sssd-nfs-idmap (loongarch64)
    sssd-nfs-idmap-debuginfo (loongarch64)
    sssd-pac (loongarch64)
    sssd-pac-debuginfo (loongarch64)
    sssd-passkey (loongarch64)
    sssd-passkey-debuginfo (loongarch64)
    sssd-proxy (loongarch64)
    sssd-proxy-debuginfo (loongarch64)
    sssd-tools (loongarch64)
    sssd-tools-debuginfo (loongarch64)
    sssd-winbind-idmap (loongarch64)
    sssd-winbind-idmap-debuginfo (loongarch64)
    Maintainer: Evgeny Sinelnikov
    List of contributors:
    Evgeny Sinelnikov
    Ivan A. Melnikov
    Sergey V Turchin
    Stanislav Levin
    Andrew A. Vasilyev
    Alexey Shabalin
    Alexey Sheplyakov
    Sergey Bolshakov
    Andrey Cherepanov
      1. /dev/pts
      2. /proc
      3. adcli
      4. bind-utils
      5. cifs-utils-devel
      6. diffstat
      7. docbook-dtds
      8. docbook-style-xsl
      9. doxygen
      10. findutils
      11. glib2-devel
      12. gnutls-utils
      13. libcares-devel
      14. libcheck-devel
      15. libcmocka-devel >= 1.0.0
      16. libcollection-devel >= 0.5.1
      17. libcurl-devel
      18. libdbus-devel
      19. libdhash-devel >= 0.4.2
      20. libfido2-devel
      21. libgnutls-devel
      22. libhttp-parser-devel
      23. libini_config-devel >= 1.3.0
      24. libjansson-devel
      25. libjose-devel
      26. libkeyutils-devel
      27. libkrb5-devel
      28. libsystemd-devel
      29. libtalloc-devel
      30. libldap-devel
      31. libldb-devel >= 1.3.3
      32. libtdb-devel >= 1.1.3
      33. libtevent-devel
      34. libnfsidmap-devel >= 1:2.2.1-alt1
      35. libnl-devel
      36. libnspr-devel
      37. libnss-devel
      38. libp11-kit-devel
      39. libpam-devel
      40. libunistring-devel
      41. libuuid-devel
      42. libpcre2-devel
      43. libxml2-devel
      44. libpopt-devel
      45. libxslt
      46. nscd
      47. nss-utils
      48. nss_wrapper
      49. openssh
      50. openssl
      51. pam_wrapper
      52. libsasl2-devel
      53. libselinux-devel
      54. libsemanage-devel
      55. po4a
      56. libsmbclient-devel
      57. libssl-devel
      58. python3-devel
      59. python3-module-setuptools
      60. rpm-build-python3
      61. softhsm
      62. uid_wrapper
      63. xml-utils
      64. xsltproc
      65. samba-devel
      66. samba-winbind

    Last changed

    March 15, 2024 Evgeny Sinelnikov 2.9.4-alt2
    - Update 2.9 major release with fixes from upstream:
  + Fix the build with Samba 4.20.
  + IFP: don't trigger backtrace in case of ACL check fail.
  + krb5_child: fix order of calloc arguments.
  + pam: fix SC auth with multiple certs and missing login name.
    Jan. 17, 2024 Evgeny Sinelnikov 2.9.4-alt1
    - Update to latest 2.9 major release in long-term maintenance (LTM) phase.
- Fixes from upstream:
  + A crash when PAM passkey processing incorrectly handles non-passkey data.
  + A workaround was implemented to handle gracefully misbehaving applications
    that destroy internal state of SSSD client librarires.
  + An error when rotating KCM's logs was fixed.
  + Group membership handling when members are coming from different forest
    domains and using ldap token groups is prohibited.
  + Files provider was erroneously taking into consideration local_auth_policy
    config option, thus breaking smartcard authentication of local user in
    setups that didn't explicitly specify this option.
    Nov. 20, 2023 Evgeny Sinelnikov 2.9.3-alt1
    - Update to latest 2.9 major release.
  + KCM: provide mechanism to purge expired credentials.
  + Default hardening - id_provider channel defaults unencrypted with starttls.
  + sssd-sudo missing debug statement in its .service file.
  + SSSD goes offline during initgroups of trusted user if a group is
    missing SID.
  + Incorrect handling of reverse IPv6 update results in update failure.
  + sssd-2.9.2 breaks smart card authentication (on el8).
- The proxy provider is now able to handle certificate mapping and matching
  rules and users handled by the proxy provider can be configured for local
  Smartcard authentication.
- Passkey doesn't fail when using FreeIPA server-side authentication and
  require-user-verification=false.
- When adding a new credential to KCM and the user has already reached their
  limit, the oldest expired credential will be removed to free some space.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top