sssd-ldap-1.12.2-58.el7_1.17$>m[o'YU>;?d   = &DJT x            % Rt 22 k2   ( 8 L9,L:NpLG0 HT Ix XY\ ] ^f b5deflt u@ vdw x( yL-Csssd-ldap1.12.258.el7_1.17The LDAP back end of the SSSDProvides the LDAP back end that the SSSD can utilize to fetch identity data from and authenticate against an LDAP server.U!worker1.bsys.centos.orgjCentOSGPLv3+CentOS BuildSystem Applications/Systemhttp://fedorahosted.org/sssd/linuxx86_64]hKFICDEh<1S5A큤U!pU!TEU!ZU!ZU!ZU!ZU![U!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-1.12.2-58.el7_1.17.src.rpmlibsss_ldap.so()(64bit)sssd-ldapsssd-ldap(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@   @ libbasicobjects.so.0()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.4)(64bit)libcollection.so.2()(64bit)libcom_err.so.2()(64bit)libdbus-1.so.3()(64bit)libdhash.so.1()(64bit)libdl.so.2()(64bit)libglib-2.0.so.0()(64bit)libini_config.so.3()(64bit)libk5crypto.so.3()(64bit)libkeyutils.so.1()(64bit)libkrb5.so.3()(64bit)liblber-2.4.so.2()(64bit)libldap-2.4.so.2()(64bit)libldb.so.1()(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnssutil3.so()(64bit)libpcre.so.1()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpopt.so.0()(64bit)libpthread.so.0()(64bit)libref_array.so.1()(64bit)libsmime3.so()(64bit)libssl3.so()(64bit)libsss_child.so()(64bit)libsss_crypt.so()(64bit)libsss_debug.so()(64bit)libsss_idmap.so.0()(64bit)libsss_krb5_common.so()(64bit)libsss_ldap_common.so()(64bit)libsss_util.so()(64bit)libsystemd-id128.so.0()(64bit)libsystemd-journal.so.0()(64bit)libsystemd-login.so.0()(64bit)libtalloc.so.2()(64bit)libtalloc.so.2(TALLOC_2.0.2)(64bit)libtdb.so.1()(64bit)libtevent.so.0()(64bit)libtevent.so.0(TEVENT_0.9.9)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)sssd-commonsssd-krb5-commonrpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-11.12.2-58.el7_1.171.12.2-58.el7_1.175.2-1sssd1.10.0-8.beta24.11.1U6@U@U@UUUuUg@U7@U7@U @U@U@TE@TE@TE@Tи@Tr@Tr@Tr@Tr@T}T}T}T}T}T7T7TTC@TTZ@TZ@TT@Tp@Tp@T@T{T*@T*@TTT~@T~@TuTuTto@Tto@Tto@Tto@Tto@Tto@TmTmTmTmTl@Tl@Tl@Tl@TcKTa@T\@TZ@TZ@TR(@TG@TG@TG@TG@TG@TD@T6xTTT SS@S|@Sr @Sr @Sr @Sr @S;S;S2@S2@S,)S!S L@SSS@S@S@S@S@S @S @S @S @S @S @S @S @SSSRb@Rb@Rb@R@R@R@R@RURURUR߲RRRx@Rx@Rx@RΏ@RΏ@RΏ@R=R=RkRRRR@R@R@R@R@Rv@Rv@Rv@Rv@Rv@Rv@Rv@Rv@Rv@RpREs@REs@R7Q@Q@Q@Q@Q@QQLQکQQQo@Q)@Q@QQ@Q@QbQyQV@Q'@QQQnQZ@Q0@QQQ@Q@QQ @QQh@PP@P@P@Pz@Pz@PqnPl(PaPaPS@PH@PDPM>M2@MMzMx@Mj - 1.12.2-58.17Jakub Hrozek - 1.12.2-58.16Jakub Hrozek - 1.12.2-58.15Jakub Hrozek - 1.12.2-58.14Jakub Hrozek - 1.12.2-58.13Jakub Hrozek - 1.12.2-58.12Jakub Hrozek - 1.12.2-58.9Jakub Hrozek - 1.12.2-58.8Jakub Hrozek - 1.12.2-58.7Jakub Hrozek - 1.12.2-58.6Jakub Hrozek - 1.12.2-58.5Jakub Hrozek - 1.12.2-58.4Jakub Hrozek - 1.12.2-58.3Jakub Hrozek - 1.12.2-58.2Jakub Hrozek - 1.12.2-58.1Jakub Hrozek - 1.12.2-57Jakub Hrozek - 1.12.2-56Jakub Hrozek - 1.12.2-55Jakub Hrozek - 1.12.2-54Jakub Hrozek - 1.12.2-53Jakub Hrozek - 1.12.2-52Jakub Hrozek - 1.12.2-51Jakub Hrozek - 1.12.2-50Jakub Hrozek - 1.12.2-49Jakub Hrozek - 1.12.2-48Jakub Hrozek - 1.12.2-47Jakub Hrozek - 1.12.2-46Jakub Hrozek - 1.12.2-45Jakub Hrozek - 1.12.2-44Jakub Hrozek - 1.12.2-43Jakub Hrozek - 1.12.2-42Jakub Hrozek - 1.12.2-41Jakub Hrozek - 1.12.2-40Sumit Bose - 1.12.2-39Sumit Bose - 1.12.2-38Sumit Bose - 1.12.2-37Jakub Hrozek - 1.12.2-35Jakub Hrozek - 1.12.2-35Jakub Hrozek - 1.12.2-34Jakub Hrozek - 1.12.2-33Jakub Hrozek - 1.12.2-32Jakub Hrozek - 1.12.2-31Jakub Hrozek - 1.12.2-30Jakub Hrozek - 1.12.2-29Jakub Hrozek - 1.12.2-28Jakub Hrozek - 1.12.2-27Jakub Hrozek - 1.12.2-26Jakub Hrozek - 1.12.2-25Jakub Hrozek - 1.12.2-24Jakub Hrozek - 1.12.2-23Jakub Hrozek - 1.12.2-22Jakub Hrozek - 1.12.2-21Jakub Hrozek - 1.12.2-20Jakub Hrozek - 1.12.2-19Jakub Hrozek - 1.12.2-18Jakub Hrozek - 1.12.2-17Jakub Hrozek - 1.12.2-16Jakub Hrozek - 1.12.2-15Jakub Hrozek - 1.12.2-14Jakub Hrozek - 1.12.2-13Jakub Hrozek - 1.12.2-12Jakub Hrozek - 1.12.2-11Jakub Hrozek - 1.12.2-10Jakub Hrozek - 1.12.2-9Jakub Hrozek - 1.12.2-8Jakub Hrozek - 1.12.2-7Jakub Hrozek - 1.12.2-6Jakub Hrozek - 1.12.2-5Jakub Hrozek - 1.12.2-4Jakub Hrozek - 1.12.2-3Jakub Hrozek - 1.12.2-2Jakub Hrozek - 1.12.2-1Jakub Hrozek - 1.12.1-2Jakub Hrozek - 1.12.1-1Jakub Hrozek - 1.12.1-1Jakub Hrozek - 1.12.0-3Jakub Hrozek - 1.12.0-2Jakub Hrozek - 1.12.0-1Jakub Hrozek - 1.11.2-70Jakub Hrozek - 1.11.2-69Jakub Hrozek - 1.11.2-68Jakub Hrozek - 1.11.2-67Jakub Hrozek - 1.11.2-66Jakub Hrozek - 1.11.2-65Jakub Hrozek - 1.11.2-64Sumit Bose - 1.11.2-63Sumit Bose - 1.11.2-62Jakub Hrozek - 1.11.2-61Jakub Hrozek - 1.11.2-60Jakub Hrozek - 1.11.2-59Jakub Hrozek - 1.11.2-58Jakub Hrozek - 1.11.2-57Jakub Hrozek - 1.11.2-56Jakub Hrozek - 1.11.2-55Jakub Hrozek - 1.11.2-54Jakub Hrozek - 1.11.2-53Jakub Hrozek - 1.11.2-52Jakub Hrozek - 1.11.2-51Jakub Hrozek - 1.11.2-50Jakub Hrozek - 1.11.2-49Jakub Hrozek - 1.11.2-48Jakub Hrozek - 1.11.2-47Jakub Hrozek - 1.11.2-46Jakub Hrozek - 1.11.2-45Jakub Hrozek - 1.11.2-44Jakub Hrozek - 1.11.2-43Jakub Hrozek - 1.11.2-42Jakub Hrozek - 1.11.2-41Jakub Hrozek - 1.11.2-40Jakub Hrozek - 1.11.2-39Jakub Hrozek - 1.11.2-38Jakub Hrozek - 1.11.2-37Jakub Hrozek - 1.11.2-36Jakub Hrozek - 1.11.2-35Jakub Hrozek - 1.11.2-34Daniel Mach - 1.11.2-33Jakub Hrozek - 1.11.2-32Jakub Hrozek - 1.11.2-31Jakub Hrozek - 1.11.2-30Jakub Hrozek - 1.11.2-29Jakub Hrozek - 1.11.2-28Jakub Hrozek - 1.11.2-27Jakub Hrozek - 1.11.2-26Jakub Hrozek - 1.11.2-25Jakub Hrozek - 1.11.2-24Jakub Hrozek - 1.11.2-23Jakub Hrozek - 1.11.2-22Jakub Hrozek - 1.11.2-21Jakub Hrozek - 1.11.2-20Daniel Mach - 1.11.2-19Jakub Hrozek - 1.11.2-18Jakub Hrozek - 1.11.2-17Jakub Hrozek - 1.11.2-16Jakub Hrozek - 1.11.2-15Jakub Hrozek - 1.11.2-14Jakub Hrozek - 1.11.2-13Jakub Hrozek - 1.11.2-12Jakub Hrozek - 1.11.2-11Jakub Hrozek - 1.11.2-10Jakub Hrozek - 1.11.2-9Jakub Hrozek - 1.11.2-8Jakub Hrozek - 1.11.2-7Jakub Hrozek - 1.11.2-6Jakub Hrozek - 1.11.2-5Jakub Hrozek - 1.11.2-4Jakub Hrozek - 1.11.2-3Jakub Hrozek - 1.11.2-2Jakub Hrozek - 1.11.2-1Jakub Hrozek - 1.11.1-2Jakub Hrozek - 1.11.1-1Jakub Hrozek - 1.11.0-1Jakub Hrozek - 1.11.0.1beta2Jakub Hrozek - 1.10.1-5Jakub Hrozek - 1.10.1-4Jakub Hrozek - 1.10.1-3Jakub Hrozek - 1.10.1-2Jakub Hrozek - 1.10.1-1Jakub Hrozek - 1.10.0-18Jakub Hrozek - 1.10.0-17Stephen Gallagher - 1.10.0-16Stephen Gallagher - 1.10.0-15Stephen Gallagher - 1.10.0-14Jakub Hrozek - 1.10.0-13Dan Horák - 1.10.0-12.beta2Jakub Hrozek - 1.10.0-11.beta2Jakub Hrozek - 1.10.0-10.beta2Jakub Hrozek - 1.10.0-9.beta2Jakub Hrozek - 1.10.0-8.beta2Jakub Hrozek - 1.10.0-7.beta1Jakub Hrozek - 1.10.0-6.beta1Jakub Hrozek - 1.10.0-5.beta1Jakub Hrozek - 1.10.0-4.beta1Jakub Hrozek - 1.10.0-3.beta1Jakub Hrozek - 1.10.0-2.alpha1Jakub Hrozek - 1.10.0-1.alpha1Stephen Gallagher - 1.9.4-9Jakub Hrozek - 1.9.4-8Jakub Hrozek - 1.9.4-7Jakub Hrozek - 1.9.4-6Jakub Hrozek - 1.9.4-5Jakub Hrozek - 1.9.4-4Jakub Hrozek - 1.9.4-3Jakub Hrozek - 1.9.4-2Jakub Hrozek - 1.9.4-1Jakub Hrozek - 1.9.3-1Jakub Hrozek - 1.9.2-5Jakub Hrozek - 1.9.2-4Jakub Hrozek - 1.9.2-3Jakub Hrozek - 1.9.2-2Jakub Hrozek - 1.9.2-1Jakub Hrozek - 1.9.1-1Jakub Hrozek - 1.9.0-24Jakub Hrozek - 1.9.0-24Jakub Hrozek - 1.9.0-23Jakub Hrozek - 1.9.0-22.rc1Jakub Hrozek - 1.9.0-21.beta7Jakub Hrozek - 1.9.0-20.beta6Jakub Hrozek - 1.9.0-19.beta6Jakub Hrozek - 1.9.0-18.beta6Jakub Hrozek - 1.9.0-17.beta6Jakub Hrozek - 1.9.0-16.beta6Jakub Hrozek - 1.9.0-14.beta6Jakub Hrozek - 1.9.0-13.beta6Fedora Release Engineering - 1.9.0-13.beta5Jakub Hrozek - 1.9.0-12.beta5Stephen Gallagher - 1.9.0-11.beta4Jakub Hrozek - 1.9.0-10.beta4Jakub Hrozek - 1.9.0-9.beta4Stephen Gallagher - 1.9.0-8.beta3Stephen Gallagher - 1.9.0-7.beta2Stephen Gallagher - 1.9.0-6.beta2Stephen Gallagher - 1.9.0-5.beta2Stephen Gallagher - 1.9.0-4.beta1Stephen Gallagher - 1.9.0-3.beta1Stephen Gallagher - 1.9.0-2.beta1Stephen Gallagher - 1.9.0-1.beta1Stephen Gallagher - 1.8.3-11Stephen Gallagher - 1.8.2-10Stephen Gallagher - 1.8.1-9Stephen Gallagher - 1.8.1-8Stephen Gallagher - 1.8.1-7Stephen Gallagher - 1.8.0-6Stephen Gallagher - 1.8.0-5.beta3Stephen Gallagher - 1.8.0-4.beta3Petr Pisar - 1.8.0-3.beta2Stephen Gallagher - 1.8.0-1.beta2Stephen Gallagher - 1.8.0-1.beta1Stephen Gallagher - 1.7.0-5Stephen Gallagher - 1.7.0-4Stephen Gallagher - 1.7.0-3Fedora Release Engineering - 1.7.0-2Stephen Gallagher - 1.7.0-1Stephen Gallagher - 1.6.4-1Stephen Gallagher - 1.6.3-5Stephen Gallagher - 1.6.3-4Jakub Hrozek - 1.6.3-3Stephen Gallagher - 1.6.3-2Stephen Gallagher - 1.6.3-1Fedora Release Engineering - 1.6.2-5Stephen Gallagher - 1.6.2-4Stephen Gallagher - 1.6.2-3Stephen Gallagher - 1.6.2-2Stephen Gallagher - 1.6.2-1Stephen Gallagher - 1.6.1-1Stephen Gallagher - 1.6.0-2Stephen Gallagher - 1.6.0-1Stephen Gallagher - 1.5.11-2Stephen Gallagher - 1.5.10-1Stephen Gallagher - 1.5.9-1Stephen Gallagher - 1.5.8-1Stephen Gallagher - 1.5.7-3Stephen Gallagher - 1.5.7-2Stephen Gallagher - 1.5.7-1Stephen Gallagher - 1.5.6.1-1Stephen Gallagher - 1.5.6-1Stephen Gallagher - 1.5.5-5Stephen Gallagher - 1.5.5-4Stephen Gallagher - 1.5.5-3Stephen Gallagher - 1.5.5-2Stephen Gallagher - 1.5.5-1Stephen Gallagher - 1.5.4-1Stephen Gallagher - 1.5.3-2Stephen Gallagher - 1.5.3-1Stephen Gallagher - 1.5.2-1Simo Sorce - 1.5.1-9Stephen Gallagher - 1.5.1-8Stephen Gallagher - 1.5.1-7Stephen Gallagher - 1.5.1-6Stephen Gallagher - 1.5.1-5Fedora Release Engineering - 1.5.1-4Stephen Gallagher - 1.5.1-3Stephen Gallagher - 1.5.1-2Stephen Gallagher - 1.5.1-1Stephen Gallagher - 1.5.0-2Stephen Gallagher - 1.5.0-1Stephen Gallagher - 1.4.1-3Stephen Gallagher - 1.4.1-2Stephen Gallagher - 1.4.1-1Stephen Gallagher - 1.4.0-2Stephen Gallagher - 1.4.0-1Stephen Gallagher - 1.3.0-35Stephen Gallagher - 1.3.0-34Stephen Gallagher - 1.3.0-33Stephen Gallagher - 1.3.0-32Stephen Gallagher - 1.3.0-31Stephen Gallagher - 1.3.0-30David Malcolm - 1.2.91-21Stephen Gallagher - 1.2.91-20Stephen Gallagher - 1.2.1-15Stephen Gallagher - 1.2.0-12Stephen Gallagher - 1.1.92-11Stephen Gallagher - 1.1.91-10Simo Sorce - 1.1.1-3Stephen Gallagher - 1.1.1-1Stephen Gallagher - 1.1.0-2Stephen Gallagher - 1.1.0-1.pre20100317git0ea7f19Stephen Gallagehr - 1.0.5-2Stephen Gallagher - 1.0.5-1Stephen Gallagher - 1.0.4-1Stephen Gallagher - 1.0.3-1Stephen Gallagher - 1.0.2-1Stephen Gallagher - 1.0.1-1Stephen Gallagher - 1.0.0-2Stephen Gallagher - 1.0.0-1Stephen Gallagher - 0.99.1-1Stephen Gallagher - 0.99.0-1Stephen Gallagher - 0.7.1-1Stephen Gallagher - 0.7.0-2Stephen Gallagher - 0.7.0-1Stephen Gallagher - 0.6.1-2Stephen Gallagher - 0.6.1-1Stephen Gallagher - 0.6.0-1Sumit Bose - 0.6.0-0Simo Sorce - 0.5.0-0Jakub Hrozek - 0.4.1-4Fedora Release Engineering - 0.4.1-3Simo Sorce - 0.4.1-2Simo Sorce - 0.4.1-1Simo Sorce - 0.4.1-0Simo Sorce - 0.3.2-2Jakub Hrozek - 0.3.2-1Simo Sorce - 0.3.1-2Simo Sorce - 0.3.1-1Simo Sorce - 0.3.0-2Simo Sorce - 0.3.0-1Simo Sorce - 0.2.1-1Simo Sorce - 0.2.0-1Jakub Hrozek - 0.1.0-5.20090309git691c9b3Jakub Hrozek - 0.1.0-4Sumit Bose - 0.1.0-3Jakub Hrozek - 0.1.0-2Stephen Gallagher - 0.1.0-1- Actually apply the patch for rhbz#1255442 - Resolves: rhbz#1255442 - getgrgid for user's UID on a trust client prevents getpw*- Resolves: rhbz#1255443 - Add index for 'objectSIDString' and maybe to other cache attributes- Resolves: rhbz#1255442 - getgrgid for user's UID on a trust client prevents getpw*- Resolves: rhbz#1244761 - Relax the libldb requirements to unblock RH Storage- Resolves: rhbz#1232130 - sysdb sudo search doesn't escape special characters- Resolves: rhbz#1226801 - ignore_group_members doesn't work for subdomains - Resolves: rhbz#1226180 - Provide a way to disable the cleanup task- Resolves: rhbz#1227772 - Properly handle AD's binary objectGUID- Filter out domain-local groups during AD initgroups operation - Related: rhbz#1214286 - SSSD downloads too much information when fetching information about groups- Resolves: rhbz#1214286 - SSSD downloads too much information when fetching information about groups- Initialize variable in the views code in one success and one failure path - Resolves: rhbz#1203365 - sssd_be segfault on IPA(when auth with AD trusted domain) client at src/providers/ipa/ipa_s2n_exop.c:1605- Resolves: rhbz#1203365 - sssd_be segfault on IPA(when auth with AD trusted domain) client at src/providers/ipa/ipa_s2n_exop.c:1605- Handle case where there is no default and no rules - Resolves: rhbz#1199143 - With empty ipaselinuxusermapdefault security context on client is staff_u- Set a pointer in ldap_child to NULL to avoid warnings - Related: rhbz#1198759 - ccname_file_dummy is not unlinked on error- Resolves: rhbz#1199143 - With empty ipaselinuxusermapdefault security context on client is staff_u- Resolves: rhbz#1198759 - ccname_file_dummy is not unlinked on error- Run the restart in sssd-common posttrans - Explicitly require libwbclient - Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade- Resolves: rhbz#1187113 - sssd deamon was not running after RHEL 7.1 upgrade- Fix endianess bug in fill_id() - Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares- Resolves: rhbz#1168904 - gid is overridden by uid in default trust view- Resolves: rhbz#1187192 - IPA initgroups don't work correctly in non-default view- Resolves: rhbz#1184982 - Need to set different umask in selinux_child- Bump the release number - Related: rhbz#1184140 - Users saved throug extop don't have the originalMemberOf attribute- Add a patch dependency - Related: rhbz#1184140 - Users saved throug extop don't have the originalMemberOf attribute- Process ghost members only once - Fix processing of universal groups with members from different domains - Related: rhbz#1168904 - gid is overridden by uid in default trust view- Related: rhbz#1184140 - Users saved throug extop don't have the originalMemberOf attribute- Resolves: rhbz#1185188 - Uncached SIDs cannot be resolved- Handle GID override in MPG domains - Handle views with mixed-case domains - Related: rhbz#1168904 - gid is overridden by uid in default trust view- Open socket to the PAC responder in krb5_child before dropping root - Related: rhbz#1184140 - Users saved throug extop don't have the originalMemberOf attribute- Resolves: rhbz#1184140 - Users saved throug extop don't have the originalMemberOf attribute- Resolves: rhbz#1182183 - pam_sss(sshd:auth): authentication failure with user from AD- Resolves: rhbz#889206 - On clock skew sssd returns system error- Related: rhbz#1168904 - gid is overridden by uid in default trust view- Resolves: rhbz#1177140 - gpo_child fails if "log level" is enabled in smb.conf - Related: rhbz#1168904 - gid is overridden by uid in default trust view- Resolves: rhbz#1175408 - SSSD should not fail authentication when only allow rules are used - Resolves: rhbz#1175705 - sssd-libwbclient conflicts with Samba's and causes crash in wbinfo - in addition to the patch libwbclient.so is filtered out of the Provides list of the package- Resolves: rhbz#1171215 - Crash in function get_object_from_cache - Resolves: rhbz#1171383 - getent fails for posix group with AD users after login - Resolves: rhbz#1171382 - getent of AD universal group fails after group users login - Resolves: rhbz#1170300 - Access is not rejected for disabled domain - Resolves: rhbz#1162486 - Error processing external groups with getgrnam/getgrgid in the server mode - Resolves: rhbz#1168904 - gid is overridden by uid in default trust view- Resolves: rhbz#1169459 - sssd-ad: The man page description to enable GPO HBAC Policies are unclear - Related: rhbz#1113783 - sssd should run under unprivileged user- Rebuild to add several forgotten Patch entries - Resolves: rhbz#1173482 - MAN: Document that only user names are checked for pam_trusted_users - Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail when domains=- Remove Coverity warnings in krb5_child code - Related: rhbz#1113783 - sssd should run under unprivileged user- Resolves: rhbz#1173482 - MAN: Document that only user names are checked for pam_trusted_users - Resolves: rhbz#1167324 - pam_sss domains option: User auth should fail when domains=- Don't error out on chpass with OTPs - Related: rhbz#1109756 - Rebase SSSD to 1.12- Resolves: rhbz#1124320 - [FJ7.0 Bug]: getgrent returns error because sss is written in nsswitch.conf as default.- Resolves: rhbz#1169739 - selinuxusermap rule does not apply to trusted AD users - Enable running unit tests without cmocka - Related: rhbz#1113783 - sssd should run under unprivileged user- krb5_child and ldap_child do not call Kerberos calls as root - Related: rhbz#1113783 - sssd should run under unprivileged user- Resolves: rhbz#1168735 - The Kerberos provider is not properly views-aware- Fix typo in libwbclient-devel alternatives invocation - Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares- Resolves: rhbz#1166727 - pam_sss domains option: Untrusted users from the same domain are allowed to auth.- Handle migrating clients between views - Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync solution to the trust solution- Use alternatives for libwbclient - Related: rhbz#1109331 - [RFE] Allow SSSD to be used with smbd shares- Resolves: rhbz#1165794 - sssd does not work with custom value of option re_expression- Add an option that describes where to put generated krb5 files to - Related: rhbz#1135043 - [RFE] Implement localauth plugin for MIT krb5 1.12- Handle IPA group names returned from the extop plugin - Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync solution to the trust solution- Resolves: rhbz#1165792 - automount segfaults in sss_nss_check_header- Resolves: rhbz#1163742 - "debug_timestamps = false" and "debug_microseconds = true" do not work after enabling journald with sssd.- Resolves: rhbz#1153593 - Manpage description of case_sensitive=preserving is incomplete- Support views for IPA users - Related: rhbz#891984 - [RFE] ID Views: Support migration from the sync solution to the trust solution- Update man page to clarify TGs should be disabled with a custom search base - Related: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases- Use upstreamed patches for the rootless sssd - Related: rhbz#1113783 - sssd should run under unprivileged user- Resolves: rhbz#1153603 - Proxy Provider: Fails to lookup case sensitive users and groups with case_sensitive=preserving- Resolves: rhbz#1161741 - TokenGroups for LDAP provider breaks in corner cases- Resolves: rhbz#1162480 - dereferencing failure against openldap server- Move adding the user from pretrans to pre, copy adding the user to sssd-krb5-common and sssd-ipa as well in order to work around yum ordering issue - Related: rhbz#1113783 - sssd should run under unprivileged user- Resolves: rhbz#1113783 - sssd should run under unprivileged user- Fix two regressions in the new selinux_child process - Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1132365 - Remove password from the PAM stack if OTP is used- Include the ldap_child and selinux_child patches for rootless sssd - Related: rhbz#1113783 - sssd should run under unprivileged user- Support overriding SSH public keys with views - Support extended attributes via the extop plugin - Related: rhbz#1109756 - Rebase SSSD to 1.12 - Resolves: rhbz#1137010 - disable midpoint refresh for netgroups if ptask refresh is enabled- Resolves: rhbz#1153518 - service lookups returned in lowercase with case_sensitive=preserving - Resolves: rhbz#1158809 - Enumeration shows only a single group multiple times- Include the responder and packaging patches for rootless sssd - Related: rhbz#1113783 - sssd should run under unprivileged user- Amend the sssd-ldap man page with info about lockout setup - Related: rhbz#1109756 - Rebase SSSD to 1.12 - Resolves: rhbz#1137014 - Shell fallback mechanism in SSSD - Resolves: rhbz#790854 - 4 functions with reference leaks within sssd (src/python/pyhbac.c)- Fix regressions caused by views patches when SSSD is connected to a pre-4.0 IPA server - Related: rhbz#1109756 - Rebase SSSD to 1.12- Add the low-level server changes for running as unprivileged user - Package the libsss_semange library needed for SELinux label changes - Related: rhbz#1113783 - sssd should run under unprivileged user - Resolves: rhbz#1113784 - sssd should audit selinux user map changes- Use libsemanage for SELinux label changes - Resolves: rhbz#1113784 - sssd should audit selinux user map changes- Rebase SSSD to 1.12.2 - Related: rhbz#1109756 - Rebase SSSD to 1.12- Sync with upstream - Related: rhbz#1109756 - Rebase SSSD to 1.12- Rebuild against ding-libs with fixed SONAME - Related: rhbz#1109756 - Rebase SSSD to 1.12- Rebase SSSD to 1.12.1 - Related: rhbz#1109756 - Rebase SSSD to 1.12- Require ldb 2.1.17 - Related: rhbz#1133914 - Rebase libldb to version 1.1.17 or newer- Fix fully qualified IFP lookups - Related: rhbz#1109756 - Rebase SSSD to 1.12- Rebase SSSD to 1.12.0 - Related: rhbz#1109756 - Rebase SSSD to 1.12- Squash in upstream review comments about the PAC patch - Related: rhbz#1097286 - Expanding home directory fails when the request comes from the PAC responder- Backport a patch to allow krb5-utils-test to run as root - Related: rhbz#1097286 - Expanding home directory fails when the request comes from the PAC responder- Resolves: rhbz#1097286 - Expanding home directory fails when the request comes from the PAC responder- Fix a DEBUG message, backport two related fixes - Related: rhbz#1090653 - segfault in sssd_be when second domain tree users are queried while joined to child domain- Resolves: rhbz#1090653 - segfault in sssd_be when second domain tree users are queried while joined to child domain- Resolves: rhbz#1082191 - RHEL7 IPA selinuxusermap hbac rule not always matching- Resolves: rhbz#1077328 - other subdomains are unavailable when joined to a subdomain in the ad forest- Resolves: rhbz#1078877 - Valgrind: Invalid read of int while processing netgroup- Resolves: rhbz#1075092 - Password change w/ OTP generates error on success- Resolves: rhbz#1078840 - Error during password change- Resolves: rhbz#1075663 - SSSD should create the SELinux mapping file with format expected by pam_selinux- Related: rhbz#1075621 - Add another Kerberos error code to trigger IPA password migration- Related: rhbz#1073635 - IPA SELinux code looks for the host in the wrong sysdb subdir when a trusted user logs in- Related: rhbz#1066096 - not retrieving homedirs of AD users with posix attributes- Related: rhbz#1072995 - AD group inconsistency when using AD provider in sssd-1.11-40- Resolves: rhbz#1073631 - sssd fails to handle expired passwords when OTP is used- Resolves: rhbz#1072067 - SSSD Does not cache SELinux map from FreeIPA correctly- Resolves: rhbz#1071903 - ipa-server-mode: Use lower-case user name component in home dir path- Resolves: rhbz#1068725 - Evaluate usage of sudo LDAP provider together with the AD provider- Fix idmap documentation - Bump idmap version info - Related: rhbz#1067361 - Check IPA idranges before saving them to the cache- Pull some follow up man page fixes from upstream - Related: rhbz#1060389 - Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes - Related: rhbz#1064908 - MAN: Remove misleading memberof example from ldap_access_filter example- Resolves: rhbz#1060389 - Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes- Resolves: rhbz#1064908 - MAN: Remove misleading memberof example from ldap_access_filter example- Resolves: rhbz#1068723 - Setting int option to 0 yields the default value- Resolves: rhbz#1067361 - Check IPA idranges before saving them to the cache- Resolves: rhbz#1067476 - SSSD pam module accepts usernames with leading spaces- Resolves: rhbz#1033069 - Configuring two different provider types might start two parallel enumeration tasks- Resolves: rhbz#1068640 - 'IPA: Don't call tevent_req_post outside _send' should be added to RHEL7- Resolves: rhbz#1063977 - SSSD needs to enable FAST by default- Resolves: rhbz#1064582 - sss_cache does not reset the SYSDB_INITGR_EXPIRE attribute when expiring users- Resolves: rhbz#1033081 - Implement heuristics to detect if POSIX attributes have been replicated to the Global Catalog or not- Resolves: rhbz#872177 - [RFE] subdomain homedir template should be configurable/use flatname by default- Resolves: rhbz#1059753 - Warn with a user-friendly error message when permissions on sssd.conf are incorrect- Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude uidNumber in filter- Resolves: rhbz#1059253 - Man page states default_shell option supersedes other shell options but in fact override_shell does. - Use the right domain for AD site resolution - Related: rhbz#743503 - [RFE] sssd should support DNS sites- Resolves: rhbz#1028039 - AD Enumeration reads data from LDAP while regular lookups connect to GC- Resolves: rhbz#877438 - sudoNotBefore/sudoNotAfter not supported by sssd sudoers plugin- Mass rebuild 2014-01-24- Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match any configured idmap domain- Resolves: rhbz#1054899 - explicitly suggest krb5_auth_timeout in a loud DEBUG message in case Kerberos authentication times out- Resolves: rhbz#1037653 - Enabling ldap_id_mapping doesn't exclude uidNumber in filter- Resolves: rhbz#1051360 - [FJ7.0 Bug]: [REG] sssd_be crashes when ldap_search_base cannot be parsed. - Fix a typo in the man page - Related: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir- Resolves: rhbz#1054639 - sssd_be aborts a request if it doesn't match any configured idmap domain - Fix return value when searching for AD domain flat names - Resolves: rhbz#1048102 - Access denied for users from gc domain when using format DOMAIN\user- Resolves: rhbz#1034920 - RHEL7 sssd not setting IPA AD trusted user homedir- Resolves: rhbz#1048102 - Access denied for users from gc domain when using format DOMAIN\user- Resolves: rhbz#1053106 - sssd ad trusted sub domain do not inherit fallbacks and overrides settings- Resolves: rhbz#1051016 - FAST does not work in SSSD 1.11.2 in Fedora 20- Resolves: rhbz#1033133 - "System Error" when invalid ad_access_filter is used- Resolves: rhbz#1032983 - sssd_be crashes when ad_access_filter uses FOREST keyword. - Fix two memory leaks in the PAC responder (Related: rhbz#991065)- Resolves: rhbz#1048184 - Group lookup does not return member with multiple names after user lookup- Resolves: rhbz#1049533 - Group membership lookup issue- Mass rebuild 2013-12-27- Resolves: rhbz#894068 - sss_cache doesn't support subdomains- Re-initialize subdomains after provider startup - Related: rhbz#1038637 - If SSSD starts offline, subdomains list is never read- The AD provider is able to resolve group memberships for groups with Global and Universal scope - Related: rhbz#1033096 - tokenGroups do not work reliable with Global Catalog- Resolves: rhbz#1033096 - tokenGroups do not work reliable with Global Catalog - Resolves: rhbz#1030483 - Individual group search returned multiple results in GC lookups- Resolves: rhbz#1040969 - sssd_nss grows memory footprint when netgroups are requested- Resolves: rhbz#1023409 - Valgrind sssd "Syscall param socketcall.sendto(msg) points to uninitialised byte(s)"- Resolves: rhbz#1037936 - sssd_be crashes occasionally- Resolves: rhbz#1038637 - If SSSD starts offline, subdomains list is never read- Resolves: rhbz#1029631 - sssd_be crashes on manually adding a cleartext password to ldap_default_authtok- Resolves: rhbz#1036758 - SSSD: Allow for custom attributes in RDN when using id_provider = proxy- Resolves: rhbz#1034050 - Errors in domain log when saving user to sysdb- Resolves: rhbz#1036157 - sssd can't retrieve auto.master when using the "default_domain_suffix" option in- Resolves: rhbz#1028057 - Improve detection of the right domain when processing group with members from several domains- Resolves: rhbz#1033084 - sssd_be segfaults if empty grop is resolved using ad_matching_rule- Resolves: rhbz#1031562 - Incorrect mention of access_filter in sssd-ad manpage- Resolves: rhbz#991549 - sssd fails to retrieve netgroups with multiple CN attributes- Skip netgroups that don't provide well-formed triplets - Related: rhbz#991549 - sssd fails to retrieve netgroups with multiple CN attributes- New upstream release 1.11.2 - Remove upstreamed patches - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.2 - Resolves: rhbz#991065- Resolves: rhbz#1019882 - RHEL7 ipa ad trusted user lookups failed with sssd_be crash - Resolves: rhbz#1002597 - ad: unable to resolve membership when user is from different domain than group- New upstream release 1.11.1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.1 - Resolves: rhbz#991065 - Rebase SSSD to 1.11.0- New upstream release 1.11.0 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0 - Resolves: rhbz#991065- New upstream release 1.11 beta 2 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.0beta2 - Related: rhbz#991065- Resolves: #906427 - Do not use lib64 in specfile for the nss and pam libraries- Resolves: #983587 - sss_debuglevel did not increase verbosity in sssd_pac.log- Resolves: #983580 - Netgroups should ignore the 'use_fully_qualified_names' setting- Apply several important fixes from upstream 1.10 branch - Related: #966757 - SSSD failover doesn't work if the first DNS server in resolv.conf is unavailable- New upstream release 1.10.1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.1- Remove libcmocka dependency- sssd-tools should require sssd-common, not sssd- Move sssd_pac to the sssd-ipa and sssd-ad subpackages - Trim out RHEL5-specific macros since we don't build on RHEL 5 - Trim out macros for Fedora older than F18 - Update libldb requirement to 1.1.16 - Trim RPM changelog down to the last year- Move sssd_pac to the sssd-krb5 subpackage- Fix Obsoletes: to account for dist tag - Convert post and pre scripts to run on the sssd-common subpackage - Remove old conversion from SYSV- New upstream release 1.10 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0- the cmocka toolkit exists only on selected arches- Apply a number of patches from upstream to fix issues found post-beta, in particular: -- segfault with a high DEBUG level -- Fix IPA password migration (upstream #1873) -- Fix fail over when retrying SRV resolution (upstream #1886)- Only BuildRequire libcmocka on Fedora- Fix typo in Requires that prevented an upgrade (#973916) - Use a hardcoded version in Conflicts, not less-than-current- New upstream release 1.10 beta2 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta2 - BuildRequire libcmocka-devel in order to run all upstream tests during build - BuildRequire libnl3 instead of libnl1 - No longer BuildRequire initscripts, we no longer use /sbin/service - Remove explicit krb5-libs >= 1.10 requires; this platform doensn't carry any older krb5-libs version- Enable hardened build for RHEL7- Apply a couple of patches from upstream git that resolve crashes when ID mapping object was not initialized properly but needed later- Resolves: rhbz#961357 - Missing dyndns_update entry in sssd.conf during realm join - Resolves: rhbz#961278 - Login failure: Enterprise Principal enabled by default for AD Provider - Resolves: rhbz#961251 - sssd does not create user's krb5 ccache dir/file parent directory when logging in- Explicitly Require libini_config >= 1.0.0.1 to work around a SONAME bug in ding-libs - Fix SSH integration with fully-qualified domains - Add the ability to dynamically discover the NetBIOS name- New upstream release 1.10 beta1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0beta1- Add a patch to fix krb5 ccache creation issue with krb5 1.11- New upstream release 1.10 alpha1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.10.0alpha1- Split internal helper libraries into a shared object - Significantly reduce disk-space usage- Fix the Kerberos password expiration warning (#912223)- Do not write out dots in the domain-realm mapping file (#905650)- Include upstream patch to build with krb5-1.11- Rebuild against new libldb- Fix build with new automake versions- Recreate Kerberos ccache directory if it's missing - Resolves: rhbz#853558 - [sssd[krb5_child[PID]]]: Credential cache directory /run/user/UID/ccdir does not exist- Fix changelog dates to make F19 rpmbuild happy- New upstream release 1.9.4- New upstream release 1.9.3- Resolve groups from AD correctly- Check the validity of naming context- Move the sss_cache tool to the main package- Include the 1.9.2 tarball- New upstream release 1.9.2- New upstream release 1.9.1- require the latest libldb- Use mcpath insted of mcachepath macro to be consistent with upsteam spec file- New upstream release 1.9.0- New upstream release 1.9.0 rc1- New upstream release 1.9.0 beta7 - obsoletes patches #1-#3- Rebuild against libldb 1.12- Rebuild against libldb 1.11- Change the default ccache location to DIR:/run/user/${UID}/krb5cc and patch man page accordingly - Resolves: rhbz#851304- Rebuild against libldb 1.10- Only create the SELinux login file if there are SELinux mappings on the IPA server- Don't discard HBAC rule processing result if SELinux is on Resolves: rhbz#846792 (CVE-2012-3462)- New upstream release 1.9.0 beta 6 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta6 - A new option, override_shell was added. If this option is set, all users managed by SSSD will have their shell set to its value. - Fixes for the support for setting default SELinux user context from FreeIPA. - Fixed a regression introduced in beta 5 that broke LDAP SASL binds - The SSSD supports the concept of a Primary Server and a Back Up Server in failover - A new command-line tool sss_seed is available to help prime the cache with a user record when deploying a new machine - SSSD is now able to discover and save the domain-realm mappings between an IPA server and a trusted Active Directory server. - Packaging changes to fix ldconfig usage in subpackages (#843995) - Rebuild against libldb 1.1.9- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- New upstream release 1.9.0 beta 5 - Obsoletes the patch for missing DP_OPTION_TERMINATOR in AD provider options - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta5 - Many fixes for the support for setting default SELinux user context from FreeIPA, most notably fixed the specificity evaluation - Fixed an incorrect default in the krb5_canonicalize option of the AD provider which was preventing password change operation - The shadowLastChange attribute value is now correctly updated with the number of days since the Epoch, not seconds- Fix broken ARM build - Add missing DP_OPTION_TERMINATOR in AD provider options- Own several directories create during make install (#839782)- New upstream release 1.9.0 beta 4 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta4 - Add a new AD provider to improve integration with Active Directory 2008 R2 or later servers - SUDO integration was completely rewritten. The new implementation works with multiple domains and uses an improved refresh mechanism to download only the necessary rules - The IPA authentication provider now supports subdomains - Fixed regression for setups that were setting default_tkt_enctypes manually by reverting a previous workaround.- New upstream release 1.9.0 beta 3 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta3 - Add a new PAC responder for dealing with cross-realm Kerberos trusts - Terminate idle connections to the NSS and PAM responders- Switch unicode library from libunistring to Glib - Drop unnecessary explicit Requires on keyutils - Guarantee that versioned Requires include the correct architecture- Fix accidental disabling of the DIR cache support- New upstream release 1.9.0 beta 2 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta2 - Add support for the Kerberos DIR cache for storing multiple TGTs automatically - Major performance enhancement when storing large groups in the cache - Major performance enhancement when performing initgroups() against Active Directory - SSSDConfig data file default locations can now be set during configure for easier packaging- Fix regression in endianness patch- Rebuild SSSD against ding-libs 0.3.0beta1 - Fix endianness bug in service map protocol- Fix several regressions since 1.5.x - Ensure that the RPM creates the /var/lib/sss/mc directory - Add support for Netscape password warning expiration control - Rebuild against libldb 1.1.6- New upstream release 1.9.0 beta 1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.0beta1 - Add native support for autofs to the IPA provider - Support for ID-mapping when connecting to Active Directory - Support for handling very large (> 1500 users) groups in Active Directory - Support for sub-domains (will be used for dealing with trust relationships) - Add a new fast in-memory cache to speed up lookups of cached data on repeated requests- New upstream release 1.8.3 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.3 - Numerous manpage and translation updates - LDAP: Handle situations where the RootDSE isn't available anonymously - LDAP: Fix regression for users using non-standard LDAP attributes for user information- New upstream release 1.8.2 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2 - Several fixes to case-insensitive domain functions - Fix for GSSAPI binds when the keytab contains unrelated principals - Fixed several segfaults - Workarounds added for LDAP servers with unreadable RootDSE - SSH knownhostproxy will no longer enter an infinite loop preventing login - The provided SYSV init script now starts SSSD earlier at startup and stops it later during shutdown - Assorted minor fixes for issues discovered by static analysis tools- Don't duplicate libsss_autofs.so in two packages - Set explicit package contents instead of globbing- Fix uninitialized value bug causing crashes throughout the code - Resolves: rhbz#804783 - [abrt] Segfault during LDAP 'services' lookup- New upstream release 1.8.1 - Resolve issue where we could enter an infinite loop trying to connect to an auth server - Fix serious issue with complex (3+ levels) nested groups - Fix netgroup support for case-insensitivity and aliases - Fix serious issue with lookup bundling resulting in requests never completing - IPA provider will now check the value of nsAccountLock during pam_acct_mgmt in addition to pam_authenticate - Fix several regressions in the proxy provider - Resolves: rhbz#743133 - Performance regression with Kerberos authentication against AD - Resolves: rhbz#799031 - --debug option for sss_debuglevel doesn't work- New upstream release 1.8.0 - Support for the service map in NSS - Support for setting default SELinux user context from FreeIPA - Support for retrieving SSH user and host keys from LDAP (Experimental) - Support for caching autofs LDAP requests (Experimental) - Support for caching SUDO rules (Experimental) - Include the IPA AutoFS provider - Fixed several memory-corruption bugs - Fixed a regression in group enumeration since 1.7.0 - Fixed a regression in the proxy provider - Resolves: rhbz#741981 - Separate Cache Timeouts for SSSD - Resolves: rhbz#797968 - sssd_be: The requested tar get is not configured is logged at each login - Resolves: rhbz#754114 - [abrt] sssd-1.6.3-1.fc16: ping_check: Process /usr/sbin/sssd was killed by signal 11 (SIGSEGV) - Resolves: rhbz#743133 - Performance regression with Kerberos authentication against AD - Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for new LDAP features - Resolves: rhbz#786957 - sssd and kerberos should change the default location for create the Credential Cashes to /run/usr/USERNAME/krb5cc- Change default kerberos credential cache location to /run/user/- New upstream release 1.8.0 beta 3 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta3 - Fixed a regression in group enumeration since 1.7.0 - Fixed several memory-corruption bugs - Finalized the ABI for the autofs support - Fixed a regression in the proxy provider- Rebuild against PCRE 8.30- New upstream release - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta2 - Fix two minor manpage bugs - Include the IPA AutoFS provider- New upstream release - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.0beta1 - Support for the service map in NSS - Support for setting default SELinux user context from FreeIPA - Support for retrieving SSH user and host keys from LDAP (Experimental) - Support for caching autofs LDAP requests (Experimental) - Support for caching SUDO rules (Experimental)- Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for new LDAP features - fix netgroups and sudo as well- Fixes a serious memory hierarchy bug causing unpredictable behavior in the LDAP provider.- Resolves: rhbz#773706 - SSSD fails during autodetection of search bases for new LDAP features- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- New upstream release 1.7.0 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.7.0 - Support for case-insensitive domains - Support for multiple search bases in the LDAP provider - Support for the native FreeIPA netgroup implementation - Reliability improvements to the process monitor - New DEBUG facility with more consistent log levels - New tool to change debug log levels without restarting SSSD - SSSD will now disconnect from LDAP server when idle - FreeIPA HBAC rules can choose to ignore srchost options for significant performance gains - Assorted performance improvements in the LDAP provider- New upstream release 1.6.4 - Rolls up previous patches applied to the 1.6.3 tarball - Fixes a rare issue causing crashes in the failover logic - Fixes an issue where SSSD would return the wrong PAM error code for users that it does not recognize.- Rebuild against libldb 1.1.4- Resolves: rhbz#753639 - sssd_nss crashes when passed invalid UTF-8 for the username in getpwnam() - Resolves: rhbz#758425 - LDAP failover not working if server refuses connections- Rebuild for libldb 1.1.3- Resolves: rhbz#752495 - Crash when apply settings- New upstream release 1.6.3 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.3 - Fixes a major cache performance issue introduced in 1.6.2 - Fixes a potential infinite-loop with certain LDAP layouts- Rebuilt for glibc bug#747377- Change selinux policy requirement to Conflicts: with the old version, rather than Requires: the supported version.- Add explicit requirement on selinux-policy version to address new SBUS symlinks.- Remove %files reference to sss_debuglevel copied from wrong upstreeam spec file.- Improved handling of users and groups with multi-valued name attributes (aliases) - Performance enhancements Initgroups on RFC2307bis/FreeIPA HBAC rule processing - Improved process-hang detection and restarting - Enabled the midpoint cache refresh by default (fewer cache misses on commonly-used entries) - Cleaned up the example configuration - New tool to change debug level on the fly- New upstream release 1.6.1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.1 - Fixes a serious issue with LDAP connections when the communication is dropped (e.g. VPN disconnection, waking from sleep) - SSSD is now less strict when dealing with users/groups with multiple names when a definitive primary name cannot be determined - The LDAP provider will no longer attempt to canonicalize by default when using SASL. An option to re-enable this has been provided. - Fixes for non-standard LDAP attribute names (e.g. those used by Active Directory) - Three HBAC regressions have been fixed. - Fix for an infinite loop in the deref code- Build with _hardened_build macro- New upstream release 1.6.0 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.6.0 - Add host access control support for LDAP (similar to pam_host_attr) - Finer-grained control on principals used with Kerberos (such as for FAST or - validation) - Added a new tool sss_cache to allow selective expiring of cached entries - Added support for LDAP DEREF and ASQ controls - Added access control features for Novell Directory Server - FreeIPA dynamic DNS update now checks first to see if an update is needed - Complete rewrite of the HBAC library - New libraries: libipa_hbac and libipa_hbac-python- New upstream release 1.5.11 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.11 - Fix a serious regression that prevented SSSD from working with ldaps:// URIs - IPA Provider: Fix a bug with dynamic DNS that resulted in the wrong IPv6 - address being saved to the AAAA record- New upstream release 1.5.10 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.10 - Fixed a regression introduced in 1.5.9 that could result in blocking calls - to LDAP- New upstream release 1.5.9 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.9 - Support for overriding home directory, shell and primary GID locally - Properly honor TTL values from SRV record lookups - Support non-POSIX groups in nested group chains (for RFC2307bis LDAP - servers) - Properly escape IPv6 addresses in the failover code - Do not crash if inotify fails (e.g. resource exhaustion) - Don't add multiple TGT renewal callbacks (too many log messages)- New upstream release 1.5.8 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.8 - Support for the LDAP paging control - Support for multiple DNS servers for name resolution - Fixes for several group membership bugs - Fixes for rare crash bugs- Resolves: rhbz#706740 - Orphaned links on rc0.d-rc6.d - Make sure to properly convert to systemd if upgrading from newer - updates for Fedora 14- Fix segfault in TGT renewal- Resolves: rhbz#700891 - CVE-2011-1758 sssd: automatic TGT renewal overwrites - cached password with predicatable filename- Re-add manpage translations- New upstream release 1.5.6 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.6 - Fixed a serious memory leak in the memberOf plugin - Fixed a regression with the negative cache that caused it to be essentially - nonfunctional - Fixed an issue where the user's full name would sometimes be removed from - the cache - Fixed an issue with password changes in the kerberos provider not working - with kpasswd- Resolves: rhbz#697057 - kpasswd fails when using sssd and - kadmin server != kdc server - Upgrades from SysV should now maintain enabled/disabled status- Fix %postun- Fix systemd conversion. Upgrades from SysV to systemd weren't properly - enabling the systemd service. - Fix a serious memory leak in the memberOf plugin - Fix an issue where the user's full name would sometimes be removed - from the cache- Install systemd unit file instead of sysv init script- New upstream release 1.5.5 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.5 - Fixes for several crash bugs - LDAP group lookups will no longer abort if there is a zero-length member - attribute - Add automatic fallback to 'cn' if the 'gecos' attribute does not exist- New upstream release 1.5.4 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.4 - Fixes for Active Directory when not all users and groups have POSIX attributes - Fixes for handling users and groups that have name aliases (aliases are ignored) - Fix group memberships after initgroups in the IPA provider- Resolves: rhbz#683267 - sssd 1.5.1-9 breaks AD authentication- New upstream release 1.5.3 - Support for libldb >= 1.0.0- New upstream release 1.5.2 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.2 - Fixes for support of FreeIPA v2 - Fixes for failover if DNS entries change - Improved sss_obfuscate tool with better interactive mode - Fix several crash bugs - Don't attempt to use START_TLS over SSL. Some LDAP servers can't handle this - Delete users from the local cache if initgroups calls return 'no such user' - (previously only worked for getpwnam/getpwuid) - Use new Transifex.net translations - Better support for automatic TGT renewal (now survives restart) - Netgroup fixes- Rebuild sssd against libldb 1.0.2 so the memberof module loads again. - Related: rhbz#677425- Resolves: rhbz#677768 - name service caches names, so id command shows - recently deleted users- Ensure that SSSD builds against libldb-1.0.0 on F15 and later - Remove .la for memberOf- Fix memberOf install path- Add support for libldb 1.0.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix nested group member filter sanitization for RFC2307bis - Put translated tool manpages into the sssd-tools subpackage- Restore Requires: cyrus-sasl-gssapi as it is not auto-detected during - rpmbuild- New upstream release 1.5.1 - Addresses CVE-2010-4341 - DoS in sssd PAM responder can prevent logins - Vast performance improvements when enumerate = true - All PAM actions will now perform a forced initgroups lookup instead of just - a user information lookup - This guarantees that all group information is available to other - providers, such as the simple provider. - For backwards-compatibility, DNS lookups will also fall back to trying the - SSSD domain name as a DNS discovery domain. - Support for more password expiration policies in LDAP - 389 Directory Server - FreeIPA - ActiveDirectory - Support for ldap_tls_{cert,key,cipher_suite} config options -Assorted bugfixes- CVE-2010-4341 - DoS in sssd PAM responder can prevent logins- New upstream release 1.5.0 - Fixed issues with LDAP search filters that needed to be escaped - Add Kerberos FAST support on platforms that support it - Reduced verbosity of PAM_TEXT_INFO messages for cached credentials - Added a Kerberos access provider to honor .k5login - Addressed several thread-safety issues in the sss_client code - Improved support for delayed online Kerberos auth - Significantly reduced time between connecting to the network/VPN and - acquiring a TGT - Added feature for automatic Kerberos ticket renewal - Provides the kerberos ticket for long-lived processes or cron jobs - even when the user logs out - Added several new features to the LDAP access provider - Support for 'shadow' access control - Support for authorizedService access control - Ability to mix-and-match LDAP access control features - Added an option for a separate password-change LDAP server for those - platforms where LDAP referrals are not supported - Added support for manpage translations- Solve a shutdown race-condition that sometimes left processes running - Resolves: rhbz#606887 - SSSD stops on upgrade- Log startup errors to the syslog - Allow cache cleanup to be disabled in sssd.conf- New upstream release 1.4.1 - Add support for netgroups to the proxy provider - Fixes a minor bug with UIDs/GIDs >= 2^31 - Fixes a segfault in the kerberos provider - Fixes a segfault in the NSS responder if a data provider crashes - Correctly use sdap_netgroup_search_base- Fix incorrect tarball URL- New upstream release 1.4.0 - Added support for netgroups to the LDAP provider - Performance improvements made to group processing of RFC2307 LDAP servers - Fixed nested group issues with RFC2307bis LDAP servers without a memberOf plugin - Build-system improvements to support Gentoo - Split out several libraries into the ding-libs tarball - Manpage reviewed and updated- Fix pre and post script requirements- Resolves: rhbz#606887 - sssd stops on upgrade- Resolves: rhbz#626205 - Unable to unlock screen- Resolves: rhbz#637955 - libini_config-devel needs libcollection-devel but - doesn't require it- Resolves: rhbz#632615 - the krb5 locator plugin isn't packaged for multilib- Resolves: CVE-2010-2940 - sssd allows null password entry to authenticate - against LDAP- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild- New upstream version 1.2.91 (1.3.0rc1) - Improved LDAP failover - Synchronous sysdb API (provides performance enhancements) - Better online reconnection detection- New stable upstream version 1.2.1 - Resolves: rhbz#595529 - spec file should eschew %define in favor of - %global - Resolves: rhbz#593644 - Empty list of simple_allow_users causes sssd service - to fail while restart. - Resolves: rhbz#599026 - Makefile typo causes SSSD not to use the kernel - keyring - Resolves: rhbz#599724 - sssd is broken on Rawhide- New stable upstream version 1.2.0 - Support ServiceGroups for FreeIPA v2 HBAC rules - Fix long-standing issue with auth_provider = proxy - Better logging for TLS issues in LDAP- New LDAP access provider allows for filtering user access by LDAP attribute - Reduced default timeout for detecting offline status with LDAP - GSSAPI ticket lifetime made configurable - Better offline->online transition support in Kerberos- Release new upstream version 1.1.91 - Enhancements when using SSSD with FreeIPA v2 - Support for deferred kinit - Support for DNS SRV records for failover- Bump up release number to avoid library sub-packages version issues with previous releases.- New upstream release 1.1.1 - Fixed the IPA provider (which was segfaulting at start) - Fixed a bug in the SSSDConfig API causing some options to revert to - their defaults - This impacted the Authconfig UI - Ensure that SASL binds to LDAP auto-retry when interrupted by a signal- Release SSSD 1.1.0 final - Fix two potential segfaults - Fix memory leak in monitor - Better error message for unusable confdb- Release candidate for SSSD 1.1 - Add simple access provider - Create subpackages for libcollection, libini_config, libdhash and librefarray - Support IPv6 - Support LDAP referrals - Fix cache issues - Better feedback from PAM when offline- Rebuild against new libtevent- Fix licenses in sources and on RPMs- Fix regression on 64-bit platforms- Fixes link error on platforms that do not do implicit linking - Fixes double-free segfault in PAM - Fixes double-free error in async resolver - Fixes support for TCP-based DNS lookups in async resolver - Fixes memory alignment issues on ARM processors - Manpage fixes- Fixes a bug in the failover code that prevented the SSSD from detecting when it went back online - Fixes a bug causing long (sometimes multiple-minute) waits for NSS requests - Several segfault bugfixes- Fix CVE-2010-0014- Patch SSSDConfig API to address - https://bugzilla.redhat.com/show_bug.cgi?id=549482- New upstream stable release 1.0.0- New upstream bugfix release 0.99.1- New upstream release 0.99.0- Fix segfault in sssd_pam when cache_credentials was enabled - Update the sample configuration - Fix upgrade issues caused by data provider service removal- Fix upgrade issues from old (pre-0.5.0) releases of SSSD- New upstream release 0.7.0- Fix missing file permissions for sssd-clients- Add SSSDConfig API - Update polish translation for 0.6.0 - Fix long timeout on ldap operation - Make dp requests more robust- Ensure that the configuration upgrade script always writes the config file with 0600 permissions - Eliminate an infinite loop in group enumerations- New upstream release 0.6.0- New upstream release 0.5.0- Fix for CVE-2009-2410 - Native SSSD users with no password set could log in without a password. (Patch by Stephen Gallagher)- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Fix a couple of segfaults that may happen on reload- add missing configure check that broke stopping the daemon - also fix default config to add a missing required option- latest upstream release. - also add a patch that fixes debugging output (potential segfault)- release out of the official 0.3.2 tarball- bugfix release 0.3.2 - includes previous release patches - change permissions of the /etc/sssd/sssd.conf to 0600- Add last minute bug fixes, found in testing the package- Version 0.3.1 - includes previous release patches- Try to fix build adding automake as an explicit BuildRequire - Add also a couple of last minute patches from upstream- Version 0.3.0 - Provides file based configuration and lots of improvements- Version 0.2.1- Version 0.2.0- package git snapshot- fixed items found during review - added initscript- added sss_client- Small cleanup and fixes in the spec file- Initial release (based on version 0.1.0 upstream code) deesfrjauk1.12.2-58.el7_1.171.12.2-58.el7_1.17libsss_ldap.sosssd-ldap-1.12.2COPYINGsssd-ldap.5.gzsssd-ldap.5.gzsssd-ldap.5.gzsssd-ldap.5.gzsssd-ldap.5.gzsssd-ldap.5.gz/usr/lib64/sssd//usr/share/doc//usr/share/doc/sssd-ldap-1.12.2//usr/share/man/de/man5//usr/share/man/es/man5//usr/share/man/fr/man5//usr/share/man/ja/man5//usr/share/man/man5//usr/share/man/uk/man5/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnuELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0x5986139c103e263fc91b7c1c18db8ade2efb8f6b, strippeddirectoryPascal source, ASCII texttroff or preprocessor input, UTF-8 Unicode text, with very long lines (gzip compressed data, from Unix, max compression)troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, from Unix, max compression)-PR*RRR'R"R)R&RRRRR RRRR(R%R RRRRRRRRRRR$R#RR!RRRR R RR R RRRR.?P7zXZ !PH6>DLT3sssd-ldap-1.12.2-58.el7_1.14 " W2 -sBKso~hhsssd-ldap-1.12.2-58.el7_1.17>t  DH`pUa}$ƨ[ζ=_džBv_yۉՏ-tXL <]?Q2Hfnjݺswg/.a#߼[M!Ҋ%5 .O+ۥ_bܕ. cf hy_ь's`p"<c*1rOw1ZK jpxlK#$tƸ2 %V걩(J8 ێJdkЍ^queIe4s)٤Axib8Ɨ'\:@XࡇNE~n= ]OLmzLMe@WR/J6 7gn ۳VPH*D GW`f5R: 6مBJ\6ԒNv3 kGl+oax2Cw?M F|< x~$LS3VD<;X߆Q t˜s^9d9bc84959b2592b52f3e48cae51bb56f28d1a2e (Ua}$ƨ]Jl+FXzic/>jm]FاV` ^[\>~q:eor#|wJ9y_|Nl=޴Ңjdq0cj Ԁ\0O[  :MsM('VLᙦV&5c1*b,pgo4 L _$ G UyڎhiS#|"Y,?;0[\I_~׻ > o0ESF;J  Jsݳ&&& 8vS| /eYC9+q]N9VĬ1#0xb6 2i*{-lG?IQ pbXx6^xZ]_am'2TZ<NVYޔ^~?`Pnc)%+2nPQ Ps)L8n%Fבީ&Mk^\%yJː)lSzٺ88> %S &= ]'C8BZh91AY&SYYIͪ }v緝wowۻ{[2'4z504dzh@hƧf&OSj=F&LSL3MF=OA =M3Q!4ɓMm2ёIS M< ~ڣ<)6ҙLi'ƩMdhʞzC IOiFA zjdi1iizi4ɓO'l@fMmFF!McHO)zzFhzM6OI5=Ojڦ'LFM2S'jihiڌ=C#L z4xHe1Dm2&ID#'ɓ&MmMPcPO$@Ijh@bmC4zFLɦ2Lj4ɓA2z#44$M$Lh2hdhhhM 44Ѡzӭ19+4ԝQIT:3 33ME}r ϪvZw -:CbMTM}J6,p"UaDe:=2Xhc_v_TB" kM,LB$]mbIă-Is0rUȲz*+5Ȱ`Aj¼LPxVeBCMB?NJ!bRAeܽV oV>g8ğb0KG+c>|(tבXwH8T;C%SR7~<|& DTWJsv>{c&E" PH;mmҙ fNj}rao;F G=( &=qFn{75#v0֡#_UGݍi s/B(:v""@:T+q\1Fr< xլbtUNv4U*V $fCԢb{N,x Tٽ@2eh9 -ONaG6ZSϼP0]YtT_ <(e؎&ai|pJޝJzPHy%_tk'J8[M~NH(#'x*f6c/,LYԁښwIJ JƆr x8>%^FڔմjUKtP(5wDFt6IU31sw:'QDZ]ui_P<۱C-fXV7pAX/@U$-V*Z@eBo)<6ժ\.} Q=se"a0%}J?hUc<2 >CZL*"wYlU ׭&7L.`}U3YGdR~K']"( )z@uvZk/1A=/tzHeFҜ}?wR@utډ68@t nrTCy|:b(Mt~Ex~I֟ Y9ķ+ eEr␭zI4W&e&C%E;#ed;:~ ]oA Bs&=2f<0^X~pB-Qa8Kаs+-1D$vKpG 'Hޕ潜rPC$t-ZNI ބy %<3,-KHb\&92Qg/A~_b 4bhgcnh_`QA#UYghD" c"<`#g5\PbK/8oy)x ў6␶;gBS> `הnRy`S!d1ںЁN lf @AfJVa״MjUB/g|k)TP9 h2ǭ0/1\7Ʉi%Hq7󆗆ͨ6\8BDWN(3{n)?Av`nY"\v iQ(84 v%cU/H ;[cwrS->Hr鎩fjRdѐfT]ĉNܿ st Rt fNl9"(ɂ*0nFQۍHuHt(L*>ӯ^ٚPddίš$ɴ_%ёkEA,Ō}, }Zn)Hbt^khG\VHDGlA4TZ!- ?DsZI*OsT{msW_-8'Z8At?B1DbGEȽ@[s"bČHfoYM!Ԯ+',j3205-0;$Kdv&s zx )V201x\/J\d nD&YSlbc3@si|1ǻ<<(uwc'$3G0%v3 znlphO,i98OG6(<ہqa3/VV}8N{Ʊ uUaz 4uwk0d% VVcѰ޴9 v탺x,>x21dԷ,w#gEpJIMdbfX,gg5"+akeAW=BT &ؔw$S ڠ?v[1eR¶FF(<@*H6vO?ҿ'6Ғmo#dQP峲k?D6VmŞ: @t#%~wMm)-_h`gW^05Vyip4sU&-Nt*JXP)k㟶`^:}$UtRw{Z\t=,"מx mjiM`d{%u L_m^xpUs@=X+Mn VG#eU^O4JШ|$T4UQg, ᡻i"#m? C$a蟭16(QG*[ǚ@C{sDaVY =t;ћם&Ō }O8tI$ cQzSxHT gyE%zRq~A <pr<nf$ШMAƠ9}!UbZ/~X Оy K Qkn`+g*4 5i zYxv0i )[$Ўz6W+e9u^?)xC $*P_qgrPG!'܁.r.'zN9SbȂ$2HrώsG.5LX{nv_CwoaA6axz#"uaˆr8$IM9Li= (x:TE cyOvw<O?z^'d|ku_z^?D+.N&x7E@%H1&Hqp@8Oh*\oiR=mFE4Q#-EV(q7 T/*hXo2p9ai_i(a!i]q\[(3Las['@&.,s] nqP$&1^?5 0~v6VpU &bςTqh8|s 5#g=ݺ߳~waTޗQ+IbubZcP"^,<1cg dnmi.󺼼 ̟ +iQk&Ob 'i"Qy qǞ:<]6D?`Jc#\j\B<]GP|UxZM|>GD%Lp ^b2_2ś?8IJц F4~֭G<ٌa >t< rC"4w>@p-ȿ!x5eATJY$* }VKvY—4C, ĹKȆsѦ&%C.Vgij i>ԒGy^<BG0ZT#qĐqꂤE&t+,fùj1gq4k2ET-KGp ]" H7ُ3rH0$ 7B 9̕׍?Cf( 9,*c”p~J$Ice6-uEEᙊ̲%kZ* c&[u"#W Zl0#Ń%+J+ɳUebJ ׆w[?|7\NֶI+[{kǧo:ZywG/~DC<ױN?|'K2M>,+b%dM3\6፞)k= K9Ƶn:N=zqw@֩0i2XX$ʆ{GbiTNNN{IW|}_`z0㣽k{-ȰEs=z:um!Ev\dS8d\H$H\F)=N5\ sHG'm(I/[kk]˽z~-:V|F@NYLIՇKmI;.T)Pi;2 1=n"2%1Gְcb*񦐈'?e9ɤ%lDO""ls*-e (rHz_j+1*/z{0Y3?:L ~*Y s4DLj)$26Ex%(a95@EcI<* YRs`Hs&j^XaHP;P9 ː7H,Z0s;I6^Yt{K6'{WMbyHS]ƚt}2K TVnX 9<՘^wuOv Y3\o 4ѻ/uHp'= H"9PaPFZ[2^E5' TT꣄C,W#r%קNf''Nn1:- TU\$F ~"g$j&.d]TaJP$V6 >'NHU{ݓ_N:6#bǧ!VXPRB~^';},/.9|jB]fDM^rT#؀,Hx[K)e}7h{{wη;O>{(\M]*/45R@nТɍm1[h,tz*(QJ[(d`S8}GTRNZcWto#x9Rպ[/hh^)B%K ǩ S儋+,`$^0S`]A94| 1׮>PIMY#hB[ Z<(D ՠ8e](((UEޚEJX({?µSR茜'Ag}^}KOHHK$gM J`#½_ -ĉrvC\/SsRzdCVUB5[a|H #Ԡyu~!!?єV\w...V?Gy L֎fND=S"&>X'ٔ˄ Kn'UТ9Ahsbj6~yKL!wőJ5L,M\?EILp_cdM'd ޥnq^f4W ^ok,]2Z dK`ܐp bJSSN%#}&e@uQD1,]k#MT́Llj1Aےn@.G1 \7{gGМLJ*\qu9cO_~̅kyY,Q99s9gL#,mSvٿ"O5OuK(MKn!2*Si .ƆPu5@,dTɻŧ#(Ƀ-" +G%/$xd2l3#VԜ@WsN2*j;L6PĤZ7_ׇ%>yWhOnxIl=Z zHt}r: ѽjTSbQC3M6ȬpUN"iYu0Yc+t -<ۜBMS.4c̵U@}v8Ż*_B 0PJfPu*勫y`[{/0̤ ~{80LloTΟxG+T:x$CH8[>&W;bnwwS(\ɡYJ`J¼- kp^la?\C dpi JB/P)/G׹uL'z/j&eUZ"#RD9 SP$CΑCrv>'$ޢ0U}EL4Yփ*sԣҰ m66vj_lŅcR- -x%;-B 'miOY:7:Td`lY[&hЃ-(LT e(h jnj0\n vvQ,d*-+eM&&f-㶼so|`M%˲5?1NHVqih!G1Cp]FL1MZqM ٠SL[ ^N{u vJpӀSr1D%w̙J\sIt4{tLF}dNHM[%yYOs BX PĮse"cJ:B !/uz B-/W}!Uv$W Bk{wGjiWq[S2CRNx.3ݝ[ U R0 *dXC~S]ƼO D.T/r%s3 0 XZ)f_+#,W~,͉P;TEË^'- fhR> |&VQs6aۉv?= \ějW2 ug&7)/A/ 0 E|0G`|j2U~m'}??1IXʓP`uYr "Ff:-7AStf1 GC1ۤ0eC{he_boJx>+ g 444?j&E;oň߶,u-iAڞ M䋹<'$ q!>XmX! :LxRF`p=׹I `1/)fc=r[~wl)QDijh7 -2[ QD4{2#By^9H2ܛ#Wԝ2 {>HRī "t0Z_%]۪%U& lbRڛxU,<0O君S vww+~t%.KHk+dC]dvhX]}5$McŪ63t@CFS>4ڜsHSUwS456ö6gKxQ'^}Q]ݎv$yWlDQ.om4hݪY iկM\cm-#M*sb2I FoDm1 @ 7_ʻ~X"Wf3Wꐏ_1EzZp @=MVϖW>b( zEm[6lʊ";JyYN`vfa(lyc)׺jX#=6P-Urx/CnyOΐ]=DQX ۤ5fߣvUS y+s eK<pd۠ 8L:T8)cHaRwTAY% [S:)nJE#w(z6:jSūFCm:?S" aLy=>4Fs`G1~"Pm>oytB-ʅl~/k@% PdѴZrsZ;}5Vy@" P\#PPҦŻo1"^՗ (ssq |3|np>䊟C`ޛC|C]4^*\`iJٍq%UN8,&SvSWST[|\c`@mi.fZtX>7yV"AI'1o.O}RSǵiUP0M[VIDtciF`/E`5*t!TQG"Nw/X'PȂ*.4Ǔu6^ܷTDͤ((C6ϵ)_??L']c3svݪ޷-Ǎ]Y+1ٝIIuhH`RewH4~C=tͯk}n$)4vM*L&pZpc%kǓ16cl1#(0KL#U`q|E)ޯmUs"`r4l֨JK["Ƙ>Hwz1u0HRY+@%wh k\?Ld &HX 5醄)m5h.,s1f5As)H3eht!K4]dDڒ$O.h`].2s~,3!gD#ZΤ4)G%[A]c-9G_#݃`u諚6o e*P-.^=.cUF\Ů 񌜏[bSY00EcҰmxo jՔ~?w>5!zS]ēf7:O7QPV~ j!+ čSVr$\ ɠ{|oh/d>a4ﳺ*-(`/ )kl&W$ DY$SC]:"n Xƴ=}N[0ݙ]iШ0Nis ld|b 9$LHeZ*Z{0oTP&D w ~/Xų^ZLb'I#uͳPrP)\ڈ%Kdv_t!Yա~vtQTwyI/д Gѳ3 Y6ﯨz~/ݩX\%){O"'2uF*mug,LQٚ+P$̬f,2_eQNbNLk O_m=JXw K*bluąC{SN,>ڻ|vm}_3b޾O=p9/M4;/Z)]Ȥ=۰RIyUL;mkǸ:ad 2I i [vvKۘA\v%{hDb!⧹ZԹ/ed>w蜀*KTDBdp&baaQ J6yLE]p&Z9mW/.RwM ^eSU˖K\` ς2DdseUrYd"OކSDysIZhC~ S4L&}@,_e(@ g3Eבt|8DMKIYGsrsWi6ݹ6+e䷻Ӊ=yjgr[82^kY8~Xs4 ]]bi7v&kO\g,ՖtXEC7ΟI+.iK1q5^zn uz@@Suɶz5Z®WKm=I8P;hsixJW^.""~@BGקvߟN#MkBdĐA.xoW0>\egu071?׈F~©&T%iMw )ӟv,g絩W gϊvf9G]E.:\v# B+Eǎb ̪f؂zB!fXd%G:Ai@$_kq{IUQ:[gu6惘C2Ě(jhas8k;&F[e:;E*k.Y*ni~ϯQ껀odvT?sފ%>(xJRf AF>T/ Q[r9"bC B0{J@|:Hm#zdK!I,!}Jz2,]RrLR4LU /1@2LA,WKc‡CP;|AP}X. NaDF.#)b9ȧ57ln-Z&vīa!rMV爷BGå94*X^T2U v1܈fqEgQsg#7;IV4!$4!7Ybcʜ (x KR#zqcv#ņ=c#"|`fI x  y{NS+ âܼY{WLJM NJ |F1|t p̾BW{ tI7LNam}tA ޶鈽M88%XSBGSQA-cBANW&/0v %4h/)9S(+vmb7޲(_y_*;ҔV5F}f1, c{3;y>H"!t$s~~F~p>; YcE9fvsH%eΐfgr:y$rfy_f`w±|sDO>l vʽKl"GF9>B:.BcQ{ŭ*XX\ӆiB6֊4Ӧ.3Zc= 2wm{MYh&n$l1ֳ5 ?PH+ ?R>r^#H3eT_A<4JCdrH|U^+z;y;\ )ϊJVYsax"=SكY^0AvM:̹Q hi7,%qKSζf1 aơj瑴a3:\?Pu@Q(TCXFrVIu56F8ߛ]yoL4^҂toxCFdOT{OϗB0kGh_!qѹZCˤ-ԘqCY!fbL*N## .bDᭆ'htY-\nN2^8Ѓ͂\1e^84Cp ~qsy)ԏ9@lq$^ H>=r;jB[w?5!j@%(%I3@ޡ:kMwyy{[m"x}zDn :'7 m9fr`]? {qT-kE~=ڦ^X6.H7ָUzw 2 SK6Eg~2߅@0]lȸ]]fAKB/\to?)*q up*|S3K:-|pXU"} \ $Bςb6rT߇AWj Dk/1zgOjOges94S.ι84Ce3RZ7)p#hMa>Et,:wbzx;]i8MJ[LxhVP_7%nY욳(Mw&lv\ZV/?.# l|x:Tt:SushıڡCEeN0cɟk$}8 ,E*?mVA΃Gѓ{6IVMIѠ~m%/N2 ܧyŹ|>6L>41NqݤtR:ľMI(!f7z)m=xM:GX'~2-JW!=K:%iMQ>gj,bA&ST$lV_d?^^`TvHBM F 49VR9jb& R%CZOC1}0Zԋ$kP /a9[cv sD{[3I2&sFYjq.C%[fд^d䟕`LBn@S*HnVfKG RY.іzH٩9$MHPfV`6 9cٰfZ(3*C\Lg(H4YV&E jhR8+s7ΥAko7{ǮLqUebGPٔn A+KiSWu\m»+ {{} fi4m1ڠrEX1bMz )i,N]`L:E}k1vIZ;=e>s:_#0@W"uu1_x,^| {Mlh&9oɟLFGkf5!T b1&8a!*d%2yÌ.ʁޏrGg_7r?FB#B>NEXknbZ~ $fgCa8|֜-Np?=RXa#2옹/nM-/Ir@88#բY.8ߒ⤊뢡ZgcU\ZxD}wZٿy. ȢB VB'ڈ#ʺ$uPdG;AG*ae-]pմ,W?s=+T HĈ%zKv#൰ Ƣ6gFSM0eGgk80.cdFܞo BYmϮ3bb-phwjƥ]s QSÌ.\B۞(yTM$T?0F.@5 NJ\F€&^~!YP্w 0-+zu/#&ઇʾaSsg /:y9wA{Qp0_ʁ2f'%ǵ_Sf<3M`[إU. "GMA-L|g= ^I%5g Ay[q\8z`I[l9M`e Cֲ6Nw[5gdo쭎k/ a'Y&p&\ _ cP9t֖dm #+;L)h6f2pR38q:`R˰d@- t`L$GUd}R[As\eݿ!gѣb r5UVLOJZ*ϱ0ϲ$b尟Rx /[(%AV&_?>ڛ&7Ǐ2(xk"y彬z=>4S; }uSGFsb̡VB8/[ Ӈ/T]xDׇ$*t%@[p+YF'{LῒFF0Da*s/9(oAREGΎO꺕.7!ai>47MBoWmx'v׀&MBc`z*Nb]l;2I 2nj/cz7în2誸FwG_fGUwg-aL;5BBQt:̀dGsَ!CǒAn23:HbT> IDW" ~W.J .V.4HaC"b8X*Z= Y'jޘ${I A `o! _#nboo, l R,RK7z~wo*f~7?yҦ5Q|l%f/>qK nZg~k Z ]@I;sr%iZSn޹j5o}"}Pi߅(1i|v‚LteZUڳXeV525 ֿ:eIp14Bg@d \9C6 d`.~ v.K-,S,,ߌH2'fEl>Ɲ GlVg ;4|L f5?du](O=PD^ii_TUۮ䉡߳Է HPyk|hskLZg6!>%'Z ڱcILF.;iV 8ї xd Дsc9ybF@囝اo#-)غ` )[xq8&]quZ 6ѭN xDn'~)zB7/0!yp}u>~Ệ'Y3 A4umJsKJ {݃ "Le!SX)xeAX"A@℡(y ţok9`WF~s_;;*&!CSpDR#9 Dm ɇU-B!Ufa$_4bZɽ۸{XA|g!_NNr|Zrz/wz]~9_;Ϋs>>INNOCwԄQomå%N0f8EG2Jo8'l J9&.ߖQ TdTֳpq@Nlb*̾_ʠ .o/kK4s : ~5@6l18xf*:unPUќ/p*V9$I "}`Sҡ̵\Jb8W+rP]!|  sY 1,uSۤZĐ(5 P| Ri%i\OdʡT. BcZ hRp845,&us13&X:({!~ˁ;thD$m_$bع>7>urqg#I4š/^ dBzi*bc\-.||> T #\+ D>AqѦ`7La__Gǧ;/,G]IR7O,ҕqlsMb*ʼE>k^GSw9!Q&~Yj:ÏNiBQZ}`0B8P2!ou^Ggf(8#| Rj"qvT-2X\̱a|/ -OMkKm!;ˤ 3vC8<c0[CwM%vԮ ,g{p3%/2{-<8NbX3һ\gE]e|ESRˆ ā0Ӡ7ٴK`B $>+$9N0I1L%>QXKڋ>~v8[XЏg3qdc'|3O6=K'_̎gl}V=^M m1"S+GtHGb2#(@CZ]=ʂGf Fis.Of, RwTJZ|G5~0cҬi(A@W׊yDpUٿ"YODHkxO;|\EG#*wkqEpO3- ߂&pDNpJ̭x6 v_P>0%3ԅkoHSk} [IW-]edl ƕL{'@.L@w50 b0,ߎ9Bjz{XL\Bsޭ&ۋa#v1@! 6{of=S1.ktEb/giX~=5;ň@?J~XGݏ@v-|W섞[O<-8;i˻Wˀ7Ζw8M kSa" 'V21ɚ-|spghphl]XEderNÓHzZA)B"-صfn~` Lr}e&>M꫶.eT@F}})΢7gyw󂗓/=dԖ :?[ Ch6pEeJt[EɼI} zgwnMNƨcVɮ&.DT}9|}eZ( =Kb%hTdhZ?DcXwa'anoXAV(28O"Lp]ZNǐؒ l;]0Yݪm$tmo1ZeSfB JK{䩬[ Q첽"CZK1L(`Uf k2a /٪e2VO70v.h['0 ) I!*S. a@K92#)1FYNxvpYJvtz3Y27LRo{[YAc <}9=>l6ٳ_?=o6=zlo&;co8Ai;L墅w?S6#J;#]0hR&4vč1aw~aF(~MYlHm^-bI#;|8 MWi*vURC/Am9QuV:5Z"US`Md 2WlKw'b,+i kRSуyc: H)c~r$y=V;YrW[J֢ys\oB8Esyvpi*+Vg>6ÑlQsieԶn)zj@h] .YusZP&Х[r99 <Ɏ.҃{+ώ@v+J}\ >c q;M؃X6Bфq1ϊlwedeN3؇,KsE,]EԬ 2Y&M\:U@1ӼL֋aTj\4)Ӻқo#[\]A^.o9bm^W%;D.ۘ}BKFzt 5P$ M?Ox|r;#NvNOM~*g0WB.q9.{k.^oK$kMfq=C)F82k]bATs}yfL/$B^#~pkr9=77Dx55mf(i0(rqЩ͸mI]I6cc׾=n$iGk>iQ U_|Ӥ˰M{f3+7&xZL$%5t^߶|Әo鷷/o'O|b{>~07070100000006000081a400000000000000000000000155f8215a00004413000000fd0000000000000000000000000000002700000000./usr/share/man/fr/man5/sssd-ldap.5.gz<]s7rΤoIe٬ӹh.e.J`v!`I*_t/y?0KRTT%4诳bm?H>3[icى`VEz^mqQO$"V)D Bм*^{'WܤŒ( n?f{U4q&D%v n'Ϟ> o^tTzb,X"ʦ"+LRឝldeT1>^۾Il?-zudS/YW$2̨ ,T76Iq?ůЎv,g$!vi}p0ۣ{Sd\L'#8ޓ>wmlvl%o˵m: Oxԅ4 "HM 2=4| 6"kٸ5lQ,I&\dTlm󘥏ʆWǧ]_؏GGǚj|zh}4mL#fQ)(ڡ6d"FZ,߉Yx 5᠜a~=O7nӳdvJ7˗'GW }[?s"gk8M,3'Ah昁&+@ .tv+`~"8e9WH[@;u/7.m$*HpU‡BLyNhLd,0 +"_;HCssceM g3F㚠E/tVdF%''=AҰ_Q?9΄GfPwk)_MO,SLXc:qޡ37@1*R5x~g+fjHe4@4w\j h^3;Xz6L7=ﱯz94J>̨ұiY$t {[\h,R,ԭțcz/n/)ux7u%07cA+wIY B2 GZF$5xF[٩+k0%8P0u{d5ٿ~KCZntZ x&ai- ;y?cy0}D#zp9v C j{|6:qHR60uŵ>. 6vvw{n7߂Ur{MH})ەv=."j .K7DXsБ)"IoD*:AES]yњ/)47]H][«w㣡F@!bd͵B-62&ׂ15~g":~^ν{SNIaU'&{h y২~WHDaDOn`8 a^HmWV'yWWW0Ea= M~䌉Y`qB\sԁ\X-;uwMe/ L.|Q6Fy s ȭ[}>Ay3Bt'QS MVJ2fA ߣg#c۠&:H?ZC ѯ\z^ 8b%+c?/v1w~яֶBe-ݵ3Szs4tKr!dӚxmaPQF)BT5[Zmi1Q~\_J? * 9@4PZRN_ﴡ#H*M3T&{B7*@8M1p}hU6b+qJ+OP˺lvvv{!|y ?,xyJ5.X0=V a@i! <=[{*W10`9!ps+&"47Y_ZA|ݏ@/B$uꐸϯ`a"ыQVβ`_KYR #!bdxYтr 45ҹ؆Z9+G&yC"F3mYh+ h> Ҍ- FL8VVa("e>9nQd'9s oAd&b>aS`dI~ɖ?"&oԌA{? A `eƦTXZ5.a R`͵M(nTX?|yiXi—L&iPuUu]Zj^WE&)Rݼp:,b~t^| n c64hrwBe61^\ @,gjo5c c 2 AN,{V_V2n]? z98[68!TqUۤA͙r/\sf!9/玸љ=o1 kkGx >THcx,Vd D ?DQIaV0i n*^꩐?!Q4ޥ|94Z90v Y1{|ƘvqZH>MYB~vwVtáɏ̔40@c])>l ܫAE5}X,YVxNJl |oeh$h$Q("lٕUAy߆\ZBjO1qu!sgn򽢪h,s> \|mhqϢRVM~SAX,1l9;d50)y^q]h>@Zʝ]p_} S,PUGcwI 28 JpLn5^7W}@i#fk*, :T|~)=Nf1Zv#|Y !iEH&Ϣ&Zum8UKU֡DL!Fyjj}3 _ŠV'aeMș†1[3a+,sq%}Pm)6l. ͖RmF1bhc<w/Yн"L5~AhjKKJ_Ezj\iPx!8?3$q0Dq-˴0'1WGOdP!Zt6J ,w:#ڰ,(W^=Zw `S*/"aL6a[b}Q`[3] M>Zd}XQX1_ON$^Ja:dJLh=iҖ[=n-F S`ӾkobqQԦkmW2M6 I//pDhmEU\0zK; o2:Eg *LΣ.B.gT!'Z -BжmZRwwaOc(0$&x@\ \@%¤IoJohCp/m~tV B8.Ж 4#4S&!l|AͰR;_4Yک$Pܩyj5y2-ℳJFHv#;3 ``&J-`|Qf, D4@ %30Gc_2 jTy@hntA^BE{q=' T[{~ޕ‚0f%ⷰ;*!tO~Lקx˝3nܝ ѵB?8:Q@ȆLid4ն/]+d:IǰD^2,8:S:}v10 1rL(#$#X8`f!݅- Ȉ`sDGu܇Cq΂0ʉt^`_qև[GTr@vע`Ecd )j&Ejk$ Fm-*#>R¡p %1 oSwCQ汾Xz@g*+*zy|P++v٠ˑf\W%nD!H{<4?%)GS9W+k%v,§#*nݣ8txXE7v@wבdH##n5cӶvb$wdf?[hNeTDB|&C_IN+ ^?j(|]; d ,{5JuBYŘcAK.p]WΨ;[ZʯpcY5<+֍ƭ@N%\n;n'WcpF*|kLTbtk%hq(Pp߷ոnݛm! }&$ʛ0bb;w(j۵p`cv=&媁 &mox+nSJd ]E,*i]JLiY84.<Y6e) =z©=oJ*vWqW1 Xn 2b@m.BW5PfuU. -J /6y2' eՕ}[//c4R]r6cJhr j"TF $(YԼ(5QO3H~x7n/MR.u" :8ASlIG3af! 8򈐔W?N:HGo+ew&&j؇xBnPV ORlema@FVH'ڨoF̺KK4+03/ QoJf_! dc- Jl~\R ƄD,z@O11~ΆwWbsVe|r/RS9ݞx[>׌ Xd_0"oU= O҇/[CGeH} 4`*+o4',a8hUcd*]nRv4_dա:;̎4o$xcceW>d{8#ދŘx=h~@S8٘4Ap=",LJ <#(>Pd<8[;fSq7}k\^I`Ls"50EgߟtyËkLPw,4@`&knG9 ݚw+Vuc" L8{&GX\ qSO 徾hx{q*pTŽYYR550.GGچB.GݗZ@k_rl& ztB >%b*PQ![2"2@`wE39&&:j?oX7~]\xj, I068 :ͯ'f 9@7()"sѸ`UwX^TjD"d{[5yaMMU3Q O$<ػ[Fvj ?^k/Ѓ3Ӿx05p#_{>)X~Jq:?4S/AI["}ʉ^=ʙ (7'6rHVN|do2o b)aB\^c?p~=i2&i Di)ދW&2лZKn&%G C[!9cn(Ba Xˮ`dm xF$8D\.b:[\XhRCl҂\,4Y^ !ga ^E֞ؤSMVj3)J7/,-œcXc7y\)V995@AɍKQpdwIi>+Zq )dQA ъUcxjCEG[ l*~ M3WKkWλ߽M ĘD?_iLv-zvfyz>HXm}3j"XhVAmO%Ō,MCMv`,|$PtE_y_Y`Ԡ/Bw8 $su8~p>t} *3HC]U\YWp+L6S4/1'<2 {MQtǂ3[7`hYf ZM7h]Z%t{x1six\łm`ѝyzٖ>Yr34lY:9aHnuusjh|!k/|1X O-Ԕv CrvG|8LQϸ~Mb_UF=#vY@|K3]X CVטi$&C1|D c&Uh}Se?Wvӄ);Îc``ƺ2&!;qhFp*Ɍcf|Jmrѥ+ET))Wُ㢝L~{Wow6XlPsƜd` _I@&;Y2Aڪc0[vDv^bqspSF+ot> We[q+R{;6%waTcNѨGo\goApj&;NRZ$BWl ׿Odz;A/.!JW2J@2sA[:V1=+mg"dQo@~3o};*XI2) ׅGH0.@^%盭Q\,$>(rlxvgp!{L}sט# G)ǏÔJ1 9}~yal%[P_Po~dӑz<ЧO"*8 F MMlXo {xY״P;:ܥΡÕy88Ť[KTNZe6 `55YxݗŬ|c.%qBtiО) -d#\~>:B@9fv+N̔ihC 3\x]VT +VP:Knq6;4߈*QD NQ 8c  M>_-SWHZD%:4XJdxSŸ`"8^60 Z.xADCxZ6Q-eJZiB0`YƄ"J>W9/8P] 3f3N|>NHKInt8!-!J5SK}oMKb(g1MTX,{.7k ')`I/1 X@ʮ,NOEjFpƒ(ʚ"-$ ##?2w=l(ȒeU H4Nb̰^o.zRS,i[)B>.eH Ʉ pXU6y ;N5aF(ϗ(A!qfSPiM&&E``Q,C—I j֓?kjQT1u߆/ ۭ+=&{*(5&{Q ϷPK]:p:-Ԅ7T3צqJ*}Z}Ge)XA""Ib 6*e#bzt^+(fD%*DS^[8t2hgmuZ@6!Xv2 2Q4;{k#.=_՘ِ 6%;n }Ƿ3Gl<2,42'}3G6en@+(r,?L"( #`zbBADRB[2(8B祿3hDSa֥ ͯ~ kS< E W[|l{wqP{ .Ot]# Y>=WOOnSY"n|H`<lYLN5`Jvo>b Mˌ_?C=({o$dLKyߴ^ҟ`ReƏG~O1n@qXMwDڲq3 <@1V)VFU3 Q++`5)G/M  `b ;4 8 ܳ{Sua}L&iU#}]~R&`FM%6i\3ӿma"CRhMe L`} RaX7mE: ԓC 7f(G+X=^\mzG\BzD>]4 |TC7✲eф`^ZAzb]̫kXB{TK`&F9q)S5տ%R:]d1. *a>SNNjVDž-Ui\_OH^\rJq8mC0QWYoOj!kt=mQG ,gTU~df)wtc SgMy\:`"f|qdFIM_~A |Az¡yӥw%"sRS6.EhgW’FG%?pŠ&MR̻*Ƌu}4Rp,v=T; yM6> H7*' =?ì0hlW 0W[#C]̍. yE5ƀI~Gwhw;rN5ΗIi?I#4<(JrCԻ♠q +F9j;3FDY/eH vq7/!YD5µ\ekq%j[&G}> g0"4K,gFWX?U|`~DshO0TAEکY8̢ߡr۲ʬux&{ԇ89Rئ \A!iU1=]+Z0; JؘzY㋜\2A >$MT#S ^3y큢`h^_<ޡHA ZDBT @TNxYiTMY\~V3ƫ"KH7ߗPD tLDx7a#LtZq`'c& wb [>-`,H3$M\?fZfҡ!2" KjD NV5"mtj4VC3dP 2cST,Pq&A+Ac_L*DQ: \]%bй߁.h|ئ8\_Y<#.KN;c@bL^QsS.ZPBah0yXPSe?Yޠncsޗoܿ<㖣gu=!7q+?_n/1aSB 'c#_[2BjexJ5}1'ݏǑQ A"I*=!nB0jRD@}!0Kc&3hLuK*=w YdN?"mLlr"3P< %Xͨ*HyT; ]cĆD5% +4AMsΏO0@%e-`TTTXTx(£Tx *G(³ #Lx 2!p=JG(U "&;T^eg+[l~B4#;+"dDEdY``/l6b&r 3& R*DdNCh~C$Tb#'fկI R}b=9d:YzYJ~wNo뜪xNV$͔QDQiCLȚEMp4ۍVQ5JT!_ff ;mYAvqS:R['o};Ę9ds OGW{>mN7pc>>9DL(J݈C'Xn ΀1g&[ZWaj/)GEb|}2T'>T*ydXvXÈI1iһemQk8Mʥޚs\&uaj0%F)y8eff2W"#徤ռ1bŽ׹g4nV'ώNgЇOGm6< 5k^LLA=]Ba[{eXDEL R Vo;x9OZ)RԑhwS%S6'2> oF!uTu[ª^+& Æ\ׯ$e`_{CJ"!kB/\{0-JW)is׳1ڷU1aFjz&Q({P?$d >F$s(W,&Oڊ숪.:CO\ܰ90O ՌJy:zׁ2*Ϡ [V#PoJf(W!/|nQD7)Ni=q yGC" TpLWDNaL +EQJSt&sc*O7LU)"\{g1qlqVXFɒ&L<4⡕4wqˮ!##E?^ ✝ pESaGNWT*۪%ΦvG~(֊'N en4{QM+ s6H=J1u$L5T-Uj;eequCK\iB 종?gŇt>E".2a~v1+!es:fƊ9>bI秼LIHYzeqqe`JГ;ˤYEcF'k7 ǙpԂ GSQXCaʶ70EspaE'Ga} |c)"u~s˶;u;trjC-sZ$[.ZSWV=)zbxg#],F8@'HFw^3UQ y {`mo%neMw$dO?|p]OɿAq'i Z͓XX=999UM<&|$ҟ @XON^l1;1SC?'v%hI[Bf'$sR0a47T>2TC{`|K>" rB>1{(/T %LY9!38QbFED,ͪ fA݃6E/ᒻu ܭp6]C$%;~j2 Z: ۆ&]FdP3R6NE|U-o)[djuX!rzu,:&;4^,P0ѻ'$@}߷C~OA t4-zURs[^^-GaDh:Vbt DˊF|;ISm{⽋ O_ηη<~~+W/|{/ݯ7㏴̗dM)h<-8-"oPrSXg$r Yu4j%B} +qނF,L;'f1DvMFYqVGᝒ`Wڃp璤=k_":]LD-ܯӹvYjhټE/BxSAsm8Mld?U]dǤ  6qrKt6OVyoղFO7afkub,Lbq{:"$.|S-%/=юgTQ:lL)T3Jg܏,a2ȊI#D>jҺr|9]+{'pnq(x\ 3L4*h:MCX ̃*p7SOWcDp黣;_ }19>=<gMi?}wώNP , Kzok&-r1 Zh !"}^GBE"<4N'γ8r'.XMFSuDcCO@9Uc_0IgJ߿<[KgmqI:"Rd[4u$B')ϋtyFnjr5Q}ZP8D6ŪDj/<܇y QmnM+?۫d ?(b&^ISO-d& C$η0=Kp?1{̒ofNQs&--y]5բm):w`IfNڇZ$/z7ͳoO~4;: #-C07070100000007000081a400000000000000000000000155f8215a00004568000000fd0000000000000000000000000000002700000000./usr/share/man/ja/man5/sssd-ldap.5.gzndv־mӥiyF79s06` wj䑁CCmuǒ fۚ5n[[%شm~_W+~_6_W'~i-&3cuUgKWNaõ~ڝ{/[~_zG;ڥ/]@nQ-3 lkdqlqJv~y/W%0aE\zL n/jSX>꧗]Bbd?4:QΟ+e A ӵ.OU*s~egSDy_"JrU||Ԯ9~+TLJ"8/`~ l)՗'AeH\w UZ]:s YAWJ~;rŇZ+a`.,q/_-(Y[zf JK, I8-X@8J@o9 14P Q\O_nmT]p-.`wkJhA*.It٪RȖ^p/=|\zӅVX:^V`x7-roɞw1)G=z: U窧%;mWcpV>$^P 3+>v;"n8ܞඃne29a1M Nl8` z` O44Ft:Rl[Ň\ P`Il5S-" 3aMHz$$](PCMi|[TZ 4a8Hax ǐNJ*xT @y_=]=󔼒9w7l׵תS l3I AE5p @2>kξ*n4lXy խAR _Տ752(Zݻ{Um FE/>HpEl?i;7^6;ػ+'WVGwvF{(iw4=iQ)N% cn7L쌊_}}{߁'.0f &BCs-QӒZMh~q%_0xu݌O(71d[dShSu]AtnNw# 2"x4`x K0 |H0J.|QLvV u Pex{.엃flI ,I;ѪI00 TCèKg:6L5tW 7A_p yy<2Q=L]~0Ȯm=elP9fY`b(a%4 Xh=l,c2/Ec!XRkbpb4E&J|%rò=!2".ZEb`5ʦ5! '%o#مj9U<Ӎ6zWCx ?7WgEkY5zMmj%*`OSs<0&'oBv(P6) @0:;[`~oA!FJ- :nP}I z,YHQ1x:9IXV=]| + \wtm+>#fwHU&،he}rYmA"&ed(Q-} GY" 0_6KrR:ՊaX\#!.do"rUC]2e]sR2΂*[d4g0gPiёNQǏ; DžZQhp`O2UsL1,H꧂)X p~g D'lۅ盪quaS5| E",0NbܘS&7 ]y2Zyby=sYOy-[9ۖ+َxzֳ$V0C(y>8 ǛtRgRr<-DB]8!DOH;ltm :=?ͫi&Qm7-bg.7x!g<(b h44 #sN8-E ۿXЖD1ݍK\"CL1V=yo`uJXi#o g,[)P|plyֱv@NtpǑG]+Cg`GzR}pNPM iul-u08.}M}F؛&g ] { Cp~ E*,dWkݮB|1"A 3ie1~- J.KЫztQ­KOk.߻{e{Xl3d<ډhTouI%y!i󳱰u쓩[ mV46uG? Zc##"/CV@]c Y}ᐺt{}~6%77]7{y\ SV4{^Xru3v!Z-~=ا~ػ$ P'Z>Cc=Ō*ݷbF|x$걜l6ꦁ({i 7囉S> f䌦F_FmIuS}QQmD|!O!${}KټY@@oްODaldXCc⼮o#,6 4n|Ewn<񠡼E٤](7ʃsŚP^)bPD<.kQ"Mlt <Ze<I-W-<? ^JP${0>0HwI/}ۻ(3_EnI_[U …f/JZ3-xP>!p07` 2 53a۹#zA˹>Dm"u_QGg^~5zś&뽇Ea=VkB#KJMEJS&CWց5,1hB) t5DZ^ ѫRz=V6/>K"НfXpN_"kZIFQyXؔ£m>x^r;loͲߦnK#|観  c9ybEFtUjl>sӹq=t8q{ gBAXbX쵼_IPͤ^.yk)V77?L<7~YC<̙פsZ F(]~kz6[}Po'vQ.ɰ˂ -'}"7`IMX@!稻0$k,AC0VnIcc56K8[*8a3C/ q kt -,wL9msgXt3-m`йB ޵/@PAq,;v}K/+,/Iyzii(,л_x)~// rEMT(5r>`6N4F}R]>@%=?rB~<ڭ΅+!)@H' _txM[F,wdPIẇ't2p1W:To ’}S'Hxqp53_H#N䈕0)a5ᗑ ~@HZh5Kq@>juoN0U$Cb=^;wUep.a+$ x Β.|-YoǙ8~iWK ,rkbvιW١j/2J+w˰9:M~\$Xl Wn`^ƭ/-nE}q*x.XVz4h3 7DXk,C&hQ|ЬJ0؇ y)5ӓ` u?V {|V~lI_“qL\rf4q @K4am&9~tIdg6*a 6L25A]A#-&GڞR>iB&c}1mLx׬kLd$?@z؊ziZ1p!u(a=e:@V?e~cR AOO‡*RL:4lV|L4(zm1@NE|YO 4:Ae Ի?9B:Ro nS`%eri, /VDؙ?5 njқ6\HIeK,D1" e1P l<eKS>ԋ9 L|]n*yDoIm?wy\U6rgZ6>9Ɯcgcr^aw0;79>i /g̫UR]u?׽PMb*ݔ(l9Co-RU%eTA]sSg;wrlh)698~ ,ME\wU-0ۿ7JS F`  s'0>% BGea&[_37Q {N/*ULA` ;=5Z*#\%1D*SB? cQ6ٮ_$€8Eka3h{0R{Oh{ܢY=*̉xlđVka h(*_>"RxF]y)IB2DZMF5 p'5G D֝OOﳘTp^JI^OBnjflךƦMt P{KNo|zA1^`26LT!er9+*exiY@PNA!u`_^>sj%tk-!FPTV fQrͷd;bXKOJ6#(z#KDwkAb[xj|8Ԃ}/>(>oǯՅ%BZsS[op'ؠQlB#Kq3R E*MlnRiCW@זhb~FV؊32̔`$A:oyVI[dވXFLMO M )^t Ky{+kg~y =1V 4|l#(z{&ƒƞ绰nUWUQE0[r!v:)A]y : BMZ(W^Tf$ߕdWD#;Pڴ-N_{S`w_Ӟk'& .7"ñ+܊ %\`APΕp‚/mHn sxP"D'R y G.;8Vm\I(!cK`Yy0V/0tʖJbPԨkx#A|JeT E HG*z ^Wov.\qƗ< ?)Xu28Q 4ND#fc_LbB8r gjv{iK}! h3XҨ[6gXiLslf:H;Z`UXtSA}zYɧiyc4|숝ꊕc n14<uj[b>%x c޽lPiËo]o]Fgj7ɰNz ?v/ 2EgrV6@xN1<>[sޱm7k`J)Ӻs'f#rw*Fw:@h(+aWT`^WCll%R.F6T2%6:jMܫ zD-8"1c#2!stVT[1N$hIZ !HդLTMijݩtKL'4y,Ypބ ;B?8b"ƻm'㩢7};$7JVQ삾.Y+@ޗo[!2S!ް67zw%ߢHJA ^%ʝ[6-& nCȝ v19?+$Z7XZlPn^7ҨyAfa2(FDQoDc2I/kXKTb `aKRJS`[L=B5Q>RWwKn\B'iV D##@ - ܏_]7+N|}̫ӭx(20Ntp+^p 0ۻ!RH055a=Kl|1 Ou0EWBMU6Wj=r8AlTu\JމjXK=uI#@lv̻%L^[i i kJٸPk ֜gO|cыU/z<(kJ5;5 Te =r`.3: H$-"1/Y3TMLt͖s)i^,{Te+b`G-2>#bA9IAͳ]K0li&Dic\p各TZи $^(gI\lSQ%D_JנMyy̷[ J^_Be!#ӟcB%TDs<;b>JCw>?ёd .'d.鍈sl[j7´lP몢~ܦi7.Ccњyj1it=dbF%m& N ^ܸ' X M_Gh-$H-l] 8SD2-3,k#;_]„|=o.N5.!S>I m"}8hf'ɱj;*5s=AH5*SrQOZJa\w-˒kj?fZ#=!mǜ@m3, <[[:aؒ-g=1o)h,pwHw<ȣ ˘ ,VW@"U>x!2󢲠' HZf"QqgeQȾJ)K*<W B(s4= 4*b bRt,&{3z4U¥(~pG\t e>2.0$5xI% 烗Ag.1v=UQr{YA> DY^GjOʡs <37uN-r3 :=>Mҁ4e8|x;ځ>Eh `&H L{KDI(]\@=s7oZIya.F\v1p8M:`snl'Ri0/0]0BPvEElڇ:_JGD )1:(9%AL"jyRFT\ tpo܆7eZ(y>TBOR S qӝt?;t??)t?Ow_Nӽt?{ݔ4C7DM]lw5tfmE*9f צTt\VIaUxԧ4+oh5cK$SW`pϿNb7T|廁K_yKxTuWn]"E0І CjO4qdpTzX ӌv@υԃY #J@ŵjxH,,qOȤ-agHȻ/~Nh+\%M֗{1 /ekrX&C:![+֨~C|DorH X:d!ޡa\?d Ѐ0ִd.؝J$]瓜 ?w]@]73:. ^W.9g]errB9#ob̬lL/2Jr3+yt 0NHԴ`6[w"e#'7#ID9 Rj=FU{2_u}$| IɇoD/;{ HT1zx ̗bw׎kGi/0l'|V| )ISqI6F=f:K X\{ ʩNZ+ G#VCT0)HW+m䁯j-iB2L2]Iju+J XO|iS}:h_DP<}$6bͩgU!NF~*mf\"#sY5bךUv&\#YiaI?Pr_FAM03= TI$=]I֠4JF`B` RǎxG(ILLǟ dʞèΞĴ 5Rw BO*|X27Xnړ葓W! 6"Ӵiy2})ٰ Ys"6b"zz!VZ03gDrfN4{[;.Lu\FF$\, J3RTJA>G73!yB|B5̂E#-P 2sPTi5*)s"&& "C)7]#) ϦZ;v5ৃF 0\XrD׺w,CN\)KXQ F~2r 9ph3Bō~Vم+q]'ɡ%4ۣ43`* iPK<mV$xSe3%@S3I*eTAԝPkZnW:l&n6b"2Km>dVk۳BB?bBtBmy'f %%^J\~`Nrp7q4֯\O_|\!<<ն-F KT #yu$ +n-s}Hj`:P^ }:1E`ǐUm|~ɀ"zQPOcXN"Tͪ'uD&%0Er&+kGQ9S:Sy.DE0{fo gܳC{{~oh=C{*Ŋ+Vka&~B]<=Cэ2&/(v!Ր ZzD_`-b =070<=0b> 8iJђ$(hcN+ղO-a((-RmJ-rn01e]]}S3[` g`JTt@%Fc) in}!LH4*OνK*b`D*܇X!abnLr(7 s涀Sek;ׯu.׹uÿk,?>/KK^T#wށ!Ġ(*R]|N5=x:̇~c cd9:V*|ڥ딈/ tF7R2=s+[xU`֙eYX[ ;B(d:$-7C)u uTOS#9A-ek|!UN24p!ۤW` ' 9inqU64A 5FDz^j1 d ƍ-[PxR%]4×朢 (]f' gLM>ޔ}3$N_,t2lEEay~@~/8H|>T`>+Fǟm/nG t3Έ&`4M ٥ɻw!؅ Z2 u+}TG:kX%0@NDoBգk!PlB6vF&.{'rDUѻ絰A8]BX#yi8Xa89ی=x0>:##>|~;r`xW(O97ё#ą],, 6u)ZkF,\O>`NA0<I:׃oVtq"7rc#CR(_0~@+^'57M 8s̵vޠVݫ.DܕY=lE/W18WFRRڊ(T{ fu[ P*)J)9@L)X뛘IUw2^:}'BOzї%n/Q F IlI)ӑ>"Z RPr9՞:, ҲZq5lAt;2W|6~Z|4~Z|B25N1|J;8DAdޞ ܕNczu1ɘ=9/W9nnsp<<լN/1@50sDߎcgG '`pNE\mPNM07070100000008000081a400000000000000000000000155f8215b00003c31000000fd0000000000000000000000000000002400000000./usr/share/man/man5/sssd-ldap.5.gz}߼i)}qc%NLH+PZ6cG2rώYm]"qxX?kubq"*aMDfBNuEE8>Aq✖3)Ƴ?<wVbfb+ǵ-= *D"YƅHs qP[9/J%V:_z:Q[ˈXEHd>ө0iXے oN۳K1<_/œǚfF|vfnx}rkbn Zd֡yX\[ SeE00ige,4 M"ujQkgy] ^l%.Trd0|6ON_o.ǃUFCNPm59B ]:e(0#OS@ΓU"1Kj?GS\ ͖z+t8V;e3 Hi$LItzJ2oyfk0&G#X0L|; \},uBĮ8: %5lE\E0U4,XLS;DQMD`BQHF $t#Dp!>O*AQ XF!6u qz~a (;<*Xaj`[dd0(aه/~9u]C܃oN;tI3E#$OPIV㔬G S;q#&`׋&ç}X d[r CLx▀PW}\Fg*G+S%GmT9q&ȲڅwggdqY(,^ ~_}x2DzCp{Ёuf}(X]xWu[N!SKvL+qHq-cz%%7b Ӫ(gÓⶠmmKR{)3!,I 2ЏAtx)56|#UKt$GS0\ b_86~G ikXZ7j~0s@8^7bb{dTSbzu1`-&ȕb +.D1a uPMO`a6 b0 \lhq28G1$<@^>YDKdR6@QNK!088φ7{#^0D޽Lx"#%A_hx77Dbr2HaJ:ͳ 2npc{PX կ~D RTvXBL# MY"2w(㏂2GՇb{ R1xm=?x|GL&f Й7JY,)aW&LA9:c*(P96 /1⵪򇔄w̵J vNARaTؙ32l πpr*9T9bogEV_4*-,;H(o*sϻҋu؍CIc+~/},@_`嚎eۃ 0eZI3/ŀz%&<|"6XDxJL O'iF8o3g#O:dfw!n> …|3VIX9r!#Er&! r!|]9\A|{|2q\;z pWЦ{+6md4\(Ő&ZH>"\t&ߥc*F0tףऄҦ +h12tlWÊIPi Czb YL Qmחsi9aȨlU̎Q¶Bȥ֫247?quYvKux9JV0U/ÚڵP]X*TWD YF 5=97L9`2 };Ȕ2ɔɼy~V$zT!>&\EouD&[fিh,7DZqX‚;Ul9&d{rOٕ#_]LTQS[_&w.g8gc' > Wo$ك4}խs7渢j4~~EcP`5_&(ǡ\s(:G;Q"?s@nAE,/܏ ~nUBIe)nb$0})HS/nۿ:'.ޡW`Ϩlq8=u[r(t|]e] mо}Ao3%߂i&@`SAh0iu]mV ClM\wYq.B,AnWR15׼I49$S#rNi+a]:7iVެR -*WLw[uz@mf&`Ӌ8Kv䊻@yC7.ZMО7}KTۮVmwT(TI$b{bzBZi=<ךrxSUз ]KL֗$+S!\<ԇFQ lWժaF&Ԥ eNr%D ƀRױ*=:[ UiS[p@o!/q qkwZђ:װ_X~wpn\/7"TlDǛXnE2-2qRLkN*V4i3wwq2A*8. `"C@'y9Vnϲ+;;˨fe>S#|&*T_ BϢrhJJ\RHjLX POqfUb<2L d\pT$g0uaJˬCkwΎDw'S7UQ7[|;N#W kżDl'>HCUv]e,7ԝD.K8r֨,UtJ9}TD.OU# @]hbYtU ߹BfHh[wA  0Vf1t `L X;gt{K 7r/BݪgerZf jnJ l| ǛOq=r`*qD̑vWPDuhi!4ǛSsBc pz@uyXd&/c5)nRKF֬Vy < kK)xv%gOHF"W@3fݸ6,6 .R 0X2tYebdǪ;`*|3~;tU>D/:_K:´eAqCь% vw(> cJ2ԩ.4'\##/R 4%PS$J!J7Mhy--;W"yf&pq[>'9D$藺4~G? .l(g.D0/c7.~c׽P`$nSOU7dWwIV_)ߓ }w+V3m;wcS!AxC;r:l]:i -SvR&Ko~?OsuIՊܙ/vhi{_Af74g߮T@+k q8|&)<q[> ԇV1tF-![nSy N^&.$3ygu⻫t:-/qhj?iBabI9y\ˍVqFk0_˸mxDFbgZq;.zC?ʍҌPR9TۇY ( <<~N&~O sݽ!~LLd%WĤv]1 1d*ôڙb}Sީ֪\>p¯W঩g&N{%z }*r [>|ϢRQҘf.Tk(iw*}|{?^lrTudcQ l[\{vxըTypdvlll!lFZȡP9N},CqS^}u_2Q9;vTiv>(WL-6z]mY['iW+~p!jWQ-bkZ娶dx S/LFz;5b_=;P1:ouwAl;޽7#,;Ao'6s_%vhB._ú}kpɼMD$~5!A3 a,3n\v62 .& 2L}AMK9'o^Ceg{Uϐ3xPb.4]7U} zxwRHc#Rq%*kY 8VY?DH/_ąGBpW%|. \ 6b,"UvEtC<,D$Az$+OFχ9'E!J,_0_gQM?.:VO3^FĻd76s~2: ?6p9V:{]uG1)&n%mMnM*,\:VtTᾂGHYlǻxNSb8O d,g qkR oJZ3剨bᯁ‡q߲IEtG!oZ'`\ p7~s-owt /:F{EXaؐKbIj)t’=qQ#r⋨5K鑓4x!fŽҦQ@ I$18]1wߎ~ |'UOp(o?<,w#٣ Ɯ>wXkk"+?wC~'p~X)81~Gtor/DŃ,< 8 "c%V #ZOL>`X]YŤeuXǎ-鱬wjzjB=ʦXhAt3 .,>Ń6(P[}M'}:--y! cCt*bt/BcE_Ձx~&n}PO ׵X(j42qv4"d<-OZN!Sg!0%<ᩥvRMT[qh]:S#Ueh7IPz,Itc6.]d5I:Mn0 zTہ{28ZWRCƢZQcǁMa9N:]އɤu(SMʑ#UlR#N{7>x5:m:j1g,3WZB`b\\=|QiX\!mғzpvD<5fIDM =eK@k)7OȋBPeQY<{a2.uZ BbT-RR='>PTJ§|\\nW]o>wܜj%drz{e.} %|hPjIzr9,1:u@CaRIPz΁w0`AhNӋzL|5e-X2Mi2WgзxA_?}!.^Ib^$CRpI Nn7DtWEr(ϧJ[a) Au8dN_JSh* `~Pg:z@`>1R8;szXizY7'.|=}1n q9hE|#{ˤ!xzN bsr9UKw,j$?+O<ɿ(J֤XvH2h9T )T,nU t)wR,@R}_.'ݙ$|0_ZQo uO&`5eH圡fDh{I"dQOК+'N+K/I[@'@Z挕mS*Vлr''  N?^N4U}x?WNy PgTN35t'$"+J|4(jq ߂Qm =Md EmNѴ^1MkRY|>Y>όΩgHΎ>A>H|*NVXWx.u3D/9IhJHTʔ]Ky[*SNnp[Ws|g^%O7 Lrd4?"XjCՍ+|ƺԤb N?e_L@+]ʸϻ7tݺtO.J>I귱>%L2o'e qDb*[?򣬵t]gfJvCugeZ_+RR ΄HIςoqI캋 XCEgni0|S|J!p,^N犥+lDR46.I6ɨ\0/3C=& |K8-0s'zF_>BLj7l&hLۖM7;3BIhr"M*/r+HRЯ *)Fu 5WRVRN" h' ,2=|I颟?~nIYiYVf_Oepan{XNu %J\"E GQ@T_6}|͈˫PD&%;hDغFxɬ|iwO@ cP׊/i. .UXƣp켬7r`j}[M8 v l5̈,~l|Oı_g[Ns+"t ~ AQkpJ?cðؽg`ޑ/傹N@8ǍF#9h]8/2\36'[Nz 83|n&bF%1B@1@2;tpp9{zQ^~TIR*~ꩉ,@aq *]:ԫt hsV΂ZѠx꣬.G$2+ڨ*+{.{9ř#9KLs.EOG ijfs@|m K5^wߖBO0e&0Pvubj`:(rHBhri9sC%^AN&0VS$`TNb"] -e$CthP A_*nGZ 3"1. (rP*b8y'2ySjv>X7]+˼\twA ^!ѧ޸e323H(e@&@f؆-dn)KVe/f #&p s}Ún2aa.. M$364߈=/#J몁j?S.:b[l*XB= <L&".t8>`Iq S""~<4? bp։?»P_ߛ8;rQJ|8Ty*y^hwlj%v̠謭(%hjֻ)z$Ο$&0e-pS/%KR"DvΔF̬mLaRrwϧģ2R|ȴ}.C{TN[6.d6G G#;6wS+![Y +oq59_O!  8xz_9A8FD&zv [f-~ E@6VQ!( F,f|m8HE~^@9wE0loH4tKLN3af8w.Jm{y(젵ήGC!čfl[V jΉLh7o\` 3& fbYȠd?5@E ԉjѩM%.L-!wKV;Бpsݒf=J:f}𥜩GJЉ_ۼ`v@9ҝٝR}S gSe.m #EhQ=n o(Bv{s SLhYvZiΰ?1`y<{ruq5X~~/OeQÀr)R~?+fowJzݸM :!/V1GHf6N;$}f%⾛\LJYvrC%鿃'2ptB'P"6t}N\mQ'iVt m;rN@Ȣxz뉷#Yƹ#)}Sg̘ ItTD@<%M5ӎB!NcY&ʃYJH.+7 t*99y:wa𫫾PoI4mhzB e#q@۩3jg8bv*+ם ) ;ڒdwT\i$~MĚ*p; $\fJƨ, sX 5.KuA#j(ɲ)nC䖍?-h*H ^T~~=!s DX)z"*&+jɬ"?)Cϐ?8͆ZƝ{͸ d+n u!1,]!< DS w ҙ35\G7,I#7ތ&&k5 r\f n-:YgW.&pFڻtNEvfتsHe~bBqpGQ::cKK\$ HtK:FRFrH1{f\pU)>*- ;Gb< C4~\Q6jvMaC0"wub?,YrqpaSeK Pg ~@b1C; 6'RgcMuKڢA#M^gD*ƪj[ mTR,m\ ,jRLj(I*y,ޟ@u&:pߔ>TЩCT*ўslIf.OhYut{@ SՑf!!<8}Kfgq0j0PW842۪vwQ\׽="u%`a9&g TVK{jjӔg],"OǨa!#>_]8!ˣ|7 GZsᐱEdt.$Ն>yL+4+M"t|YR|]raN3N76Cǡto, L sgbCjb\4e JC~j+qKC]7r,*  @Y H+LJdcT5%mC'eŷ3[k?.)iHPd l b`@ -NOcftGd$T4]83iX+rI: l=ɂ>~"dXy('$Kq $ ClH7YE3DX #+'R(1?Hx|ݿp(f`o^|t3s4bW·\R\k>CPUVh-f+\/bZ|,_Ċ-zg7\AeJ܃ZB>&H\yR*>Uvx\ ˀ["a)o`>qꈽȔ7+!\ntLgvjdqt!:6̵(W[j6w6Y#tT ( /\F>5q\I EO&-[Y{G#O1 m7&ET3V8IRY^M`5f%J\1gj6$Tw#j$3Rzw|bńQ@^[uvu~Xyjsrt8FSx.$3`4\6.5YT*\ϥMIF3 R#L,:Cw.f*zfs3}eYqKVj@EN%O%l` -5un*6NV8e/IBFKGJbH ߝvAE1j4sV3m,u&S|HmMt`W5J,j!؂JK u;h(`%,._} `HMuj5QVEl8_Ou?;pW[؋dY~A\1(kQ-< dlrvXL 3'Cb#̎Kaf8$lۄr,QH}^TPOHzC $URh[ySYu*XlۨrWPodE`j6M,9p~t D36)i<dedL*Q:t}a;Xά Cv6ꑎq^Wvl4NKs-Ll~(0{~ݰ0\Cܟ ;NJ|= M R`="+"‰vCV\y}6.QFTMuAkz1H &X?Žξhηrqu]_⢛3t8<w{μ#"Vm7}ޙԑ0xe~; nGj՚m;2?o %~tOrCBq5 O@SO+x" {,kXRިWKJ 84,cC3g6UϠ@b='dL40{i@Y-k/Ȍo oSp*;. aa/j8ȹ K&JʽfDޜ(3i[v M"_( `MZq9"!FDlBu:g Aun c ħPqS3d2SPR]-]ӵj%j!KT,r  PzcP-sXUS":spТf~yoKP?,a{ ag/ YJ+/e,&B)vf2LB(~8;$6+qpNI=R oLKMa/#;ʜe|ULOGu)D4xDj1 ҘʥjSm=&Sf\$9;5<PZSl+ LT/T5!Ig[5U: 4T# Yeř0܎ =9zhL< 򶙺R ŤVLl-maJ$"5tnoN_l'#z} .=a+}Z#$Z ؜*kL̓.c"^ M^AYww({^?+Rn c )0|~ I; yڵⶊ2ZTl7ZZgZǿ1{t ZuZ(ڬۛԼ, FZ?!w\0dI(/MNCqZQ7}'㑁̓`V r[w$N54binS^ :aybKj۞`ru]_41j{"o=ڒp57PI~MwPSZ ]5\?`5ݳyAcadUBO5*j [sٔ,IM: '[2(`sVR0 TMՐEWVKU-&s-zTBh|(c3R)[iUlZֆoTW:@HaTgy@G/40`L.z &yZQij~JSCJ.d~_-C=wqܳU'1=UJL q{0asT{& )7%H٪RU%FW7%w澸Kb-H_xCGTyjieX&IEvݬlBEa/4#r\Fޥq6 \ Ofvmlq]J/==o% @aWsҍRXA%N/`𿪵vdM*<+0o_D,NM8[LJF] 1?{Kh|& ZAufHεIuYwٚ",Bh$j\ WbyZ=\kT9?Rnŷ9Μ0ie㤭 }2zM"uT*X~M-qczX9!qUnfSm.zIF.ӻu0zJo \u f(Ur] 7f`ݾoZ %yt3aXFޖ灔[v6~YD7IhtDD_1:gweԶT!Veig7זJVn 0&FF82Ъu Ǩ .LrHўG[qN*޾Rv^ šX;! OS6GB=ͩ*_Fj"Y++6)!Px.!U|RǙdKRDwĝO^`xuS.򽋯oTzzel͕!T͢oUUE2DrQh .ߟīgi]叅] q{R[xPZg= %-=>$G,Juun%wC^thiڻRά|)\#ف?9p,ԑLh盯 6>Dj}v=WMF$FT8a?PTG%gٞ+ɑVl[ՙN;~6r)zܸ dH<يXX/Gs$TuQ1N0 \-&14,j܂ʠN}jHy2%E6uq™!zK\>˸2I1&U4ɧuB&20.8D\DfIZ "/aYX6UDST.Լj4gĴ 62bҸ ` c?QhP8UȨK_'*{ZӐ"הϻ: #T4:fձmaʣ`e:PmW+o߯o~C4QV*wN:$r Т,͋iA|1l !>juj1CNj€ _Q"v9v􇯜oܶGr)- !ɥАsTO0{)d15ߦѤ<A V>FXRP= H9ԝy)+1rzLl*I$jP9(T{l|Sn}G)H vSO(mC>}LH[z1ٯLy:b]}S?d}CS6:#0Ŵâў+־S*oBɪ< {k-l @pxp~VǬ9ٝ%MjHihAc0`B]a$ LW:5ȫ@_j];f&=$Q` $jDjؗ+v_2H˨9FeP7s)Ih؊fLemQp]9zpB9زgQUz '- 1gΑ5j4F)/+&)R05rEL5hSf|BбaIݛTF(^`h'Â()bxޮFZ ]oo .4.<3TϰP~049z~gpJ5 .E / {K<p5pf޴r l· tܥcp_cܳK*qI`9NlAx6Jns"}wo(=gwZՋ\MX *eKr7® uIsCwkZ=4uhTO1gkRR.V ae0vGJ-bXdayH9\ 0w9=jڥ菁Y_f%z) ,fδ,|9tl($F#/3J<^:~r8mų  7ZjbnIuJx^(vxH+I!T!WmI%3R< ΕKZHIGL_ؐVJa1JyNrkdgg*2F% +3Uߤ iqUS;K\cv@*ﶓ>\ +n:z&kk%sOiY1Ǹ46_VFpZ4Q1k͟RPp^iVTmؚT;,r/0QVw@;FY!S@gS(VWwJ\W,"0BN3=X3rO&=D{@߇$`_#AV|?:3<`mN HACR ed $-+FT93\90i! CM8[ծTo OjBm,3>(U|&&\Hbk1JCmwa1nXmBؐEᩀg b÷R!g,E}]͠XtNs͈v7bF=ŗ⚼Aw]%!ijT |+̴[|P(є 5]=A-<4aRG"v.?ܑ\6n4j+\69מnUJǎJn !:y&[^3z˗푋A#GWΔ96c66d9ԈFqo,<{iSxܞ_xUgKn`'ra4"_RʁEj MiyytHX3UC#"(u l^/ G#ݪB% .pyy<\^./}<\^./OtӅ2]_./pÅ/xyy?.~Y_w)+6t Km!u,ܬ0@[&FQ$~"oBwfu:6Ӝ̴-׸Wm."0aU _ eՂ}a|ĭ8HV^xKmaR**qƊd%kn*۰Z_Oq+M _65eV8wQ$m2mu8( sݶ ȁ6'`o#JTJɥ6$8; Ht{{|ԼEj ӨCsW" |>weTOWj~{u[5FGe= m u1&SnqH `{dz*N\ /ADiqW4yW!i9;Q> 5  {51M4N8kpGmcCNWuI+Fw@ѰOvYFDXuK&qf+W4hNYYA!x7aJߴ ى>TϲG=a=HԂ$j9\z|D6lN0UEF }avӀV 6g Ba meK!^j#1L71W &7жDL3uw]Qg!L\E;E)E`G s롭nU޲(옻D56wvPʅ8\9GUl {@s%whH5U@u N kf'r$.t¦U`͘!l7sa- ܶ[nEߡjoI৬>Vu0qaNDS1AFiMYF,p~)~X5tfv ۵]dhR A>:\_gXT磠(߂kzmp3 R+ݎhmT8g'5`( ivf8X:lmгbW9O B5;18J#hp hǑMjD`$ccԍg6N.ꂼvL%-`9L'KӌaZAo;vu #XCQ??;=mcĥ6I\D᰺$Z'1=aA 㶍\hNC3dp)`Bdy"tWl1#Q'0H0=r=^tƥuuܘ/R`SM (p ׃X/i"cw9Hgɽ{ִc?0n}qmhc'ݏV ѥFŅTBFF[U;bp:=uݷ#qD&J}Pe3pR n[oE+}?g4ut K%3BHv-PR4 X]`-tŨ"Y# C׻ziʶA`.sOW \*~?b1ΏRa:u~u]Z>ہ4Y("~n3Պ;ͭUCҘGu:yc`HJa18gh9Se1*wi_9tڂ3D-=ʭPܽ`̩ĞA\27`^IœeL ^0ad QԆe~C%\^ȧ‹eӂmQذzhR";䕷,Fyw"iO˜l+iO߭z~KB"?NbAChS%} :[JkN? vIGc ]{{HZ*8Aip|Tw"y+ N-eykyPĹ\8,ryc0cuPm{6[{yYJ9#V/l '" $lhdήeAۙ|,+xh0EٲҚڝU'^{01n 6 ZoU"J"9߇|%+&sG=7 =ǣE|!57EGL#7R]Ex%B^Լ+7NW%Na{-0PYJh6[f{Քɢ*_`3TXRznXޕMP.F<2o%"<*?Tm$ zL'B3۸B1akWsL݄Z^K_V964`n`WdWZ3;V^h y[Ewdݾ%~04rE+[`m`mm#J6ιQ `  ppUZmI\pn&-1|!%hlj2jtmqe:\=x2d5oBn}Raɇ@)Z5L/Ae&%F|r(ȊY:H)nwX+ 2mvgt}x(svmYāy/ 2HEw7ɖRVd}:wh76#X)Ǖb[L {dv  E&eWGu/VMxҪl%&%o_ONLM }MMy;(ۃ9e9{-94jUӥ|۞sV rP6s<ĊX$.52axt)VԚ UDMMh^g10E/n6ɔ0#!\2Ytzmqޫu"F]=<392ƪp=iΫ@N5([s$UCٲ&H\g'F`_*~˺B6UXO g\O!J"1!,Rl2!qO L䑴XٷjfX#X|PDIjEѢ5C8quh@ʪӽ=UU6NM\Muq> /P8d5% Ѥy)js}k Uv;ñ&J$YBkVy*Vَؗ7 5qם;WpV9[<ےҦ9caQWK9IV\Y\N9U<|klIeDAb=MLH\a^z@HB!9}OT.-]D#9۩բS8{WG_P^J?4Zٗ{dg }U2O)?v+. 5Ŏ "+63N0( )EET-'k [g .uv/]lAzdn:73Xp[q_V-x+ITJi::!H1;Pw|CSJO@Iձmn[!X?̱ZS}7u,^eDm뤨Xpz@89-߼D3}*ϿsC1 g.>K:_s~Q.0njvA[h9y)Ff]Cg .U^Y\ne2fNvYpDuI>"L̤H10Jzᵪ|_zyD*'r餼 ~lגVq)nxX/X4]jޮ E|܆tl@D9>Cʰ]´< қEvA$3Ax7:{١QO>C/6P)>8\%-P"/8.fג|W͢{X)7ZMֵ,!`b\ߝ5.7ܧ@Hp4\ИtR'cw5 qY̊|+Ol㫉,3n\#i'b_w545y~?,!_$8: , fS#BF ,I:wMB|%? c=Dxeߛ8;r=鷝~|RZQi ?võLغzr^n\Nb<\,~c#o\:y)9CŤyEB07070100000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000b00000000TRAILER!!!(`22X;%C{$$=p:| YZ