Пакет sssd-pac: Информация

- Update to latest 2.7 major release:
  + CLIENT: use thread local storage for socket to a.void the need for a lock.
  + SSS_CLIENT: got rid of code duplication.
  + SSS_CLIENT: mem-cache: fixed missing error code.
  + PAM P11: fixed minor mem-leak.

- Update russian translations (by Elena Mishina <lepata@basealt.ru>)

- Update to 2.7 major release:
  + Added a new krb5 plugin idp and a new binary oidc_child which performs
    OAuth2 authentication against FreeIPA.
  + Better default for IPA/AD re_expression. Tunning for group names
    containing '@' is no longer needed.
  + Added support for anonymous PKINIT to get FAST credentials.
  + SSSD now correctly falls back to UPN search if the user was not found even
    with cache_first = true.
  + SSSD can now handle multi-valued RDNs if a unique name must be determined
    with the help of the RDN.
  + New option implicit_pac_responder to control if the PAC responder is started
    for the IPA and AD providers, default is true.
  + New option krb5_check_pac to control the PAC validation behavior.
  + Multiple crl_file arguments can be used in the certificate_verification
    option.