I went ahead and hacked an ebuild to include the smbk5pwd overlay and submitted a bug to the Gentoo bugzilla. I don’t know how well it will be received since it screws with the Kerberos dependancies, but we shall see… If anyone wants a more direct download it’s in my overlay, but I’m not gonna [...]

Sweetness! FDS10Announcement – Fedora Directory Server “The 1.0 release, in addition to its many other features such as LDAPv3, Multi-Master Replication, and Windows Synchronization, includes support for MD5, SHA-256, SHA-384, and SHA-512 password hashing, as well as many bug fixes?

I’ve been looking for ways to keep passwords stored in LDAP in sync, and I came across the smbk5pwd module/overlay for OpenLDAP. It only works with OpenLDAP 2.2 or later, but it takes a lot of the headache out of administration if you are storing any combination of system/Kerberos/Samba passwords in LDAP and you wanna [...]

Mark McLoughlin has written a really cool GConf LDAP backend for Evo to automagically pull email account settings from LDAP. More info here.

Alistair Young posted a set of patches for WP 1.5 to allow authentication via LDAP. I’ll have to try this out over the weekend, but the design seems very solid from a security viewpoint…