1This is an attempt at an LDAP back-end for BIND 9 using the new simplified 2database interface "sdb". This is release 1.0-beta and should be pretty 3stable. Note that since version 0.4 a new schema is used. It is not 4backwards compatible with versions before 0.4. 5 61.0-beta fixes a large memory leak. An extension x-tls for enabling TLS 7has been added. 8 91.0-alpha uses LDAPv3 by default and also supports LDAP simple bind. That 10is, one can use plain text password for authentication. The bind dn and 11password is coded into the URL using extensions bindname and x-bindpw 12per RFC 2255. 13 14In 0.9 the code has been cleaned up a bit and should be slightly faster 15than previous versions. It also fixes an error with zone transfers (AXFR) 16and entries with multiple relativeDomainName values. The problem was 17that it would only use the first value in the result. There's no need 18to upgrade unless you use such entries. 19 200.8 uses asynchronous LDAP search which should give better performance. 21Thanks to Ashley Burston for providing patch. Another new feature is 22allowing filters in URLs. The syntax is as in RFC 2255. Few people will 23need this, but if you have say an internal and external version of the 24same zone, you could stick say o=internal and o=external into different 25entries, and specify for instance ldap://host/base???(o=internal) 26Some error logging has also been added. 27 280.7 allows space and other characters to be used in URLs by use of %-quoting. 29For instance space can be written as %20. It also fixes a problem with some 30servers and/or APIs that do not preserve attribute casing. 31 320.6 fixes some memory leaks present in older versions unless compiled with 33the RFC 1823 API. 34 35The big changes in 0.5 are thread support and improved connection handling. 36Multiple threads can now access the back-end simultaneously, and rather than 37having one connection per zone, there is now one connection per thread per 38LDAP server. This should help people with multiple CPUs and people with a 39huge number of zones. One final change is support for literal IPv6 addresses 40in LDAP URLs. At least OpenLDAP 2 has IPv6 support, so if you use OpenLDAP 2 41libraries and server, you got all you need. 42 43If you have bug reports, fixes, comments, questions or whatever, please 44contact me. See also http://www.venaas.no/ldap/bind-sdb/ for information. 45 46See INSTALL for how to build, install and use. 47 48Stig Venaas <venaas@uninett.no> 2004-08-15 49