On 2023-06-26 10:05:00, Alexander Bokovoy wrote:
I am off to vacation for next three weeks but wanted to highlight that
this is a topic we have been discussing on this list for quite few
months. There is a documentation available that covers some aspects of
it but not everything, surely.
Please see my answers in this thread (dated March 2023) for some of the
reasons:
https://lists.fedorahosted.org/archives/list/[email protected]/thread/HC54UQIEJQVMKZ6S5A5DCAJ4WYYTYJ7E/
and some materials are available in this thread:
https://lists.fedorahosted.org/archives/list/[email protected]/thread/RSAXURG6AR3MWONR3CZSOOI5ULDB2UVC/
and few others.
I am not interested in an AD integration, so please excuse that I
didn't follow this discussion. I will check.
This all affects FreeIPA, Samba AD, MIT Kerberos, and Heimdal, as well
as Microsoft's implementation of Active Directory with or without trust
to other AD. The issues are real, with real exploits in the wild, so we
had to work on tightening things up in multiple projects.
English is not my mother's language, so I am not sure what "tightening
things up" is supposed to mean in this context.
I am yet to complete that promised blog article, may be I'll find time
for that on this vacation...
Get a rest first. Use your vacation days to relax and to have fun. Your
blog won't run away.
Regards
Harri
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
