anyway.  A new syntax is defined, "present", that indicates that
values of an attribute type are not used, only presence is
significant.  To do routing at the MTA, define both mailHost and
mailRoutingAddress with syntax "present".  Otherwise, use "host" and
"rfc822" and mail500 will try to do routing by itself, if possible.
Read the comments in the code for the ugly details.
Added a new configuration line "own-address" that describes the FQDN of
our host to compare with mailHost.  The line can be repeated.

nested groups or the laser mail routing draft.  Mostly, this is
because a flag saying the attribute type is 'final' is not flexible
enough.  The old 'final' flag is gone and replaced by a priority
level.

Change 'forward' to 'route' to be consistent with the laser wording.

Add new 'domain' spec in the configuration file to describe what are
the local domains so that we do not loop when doing the laser thing.

We were escaping asterisks in filters.  This seems incorrect.  Removed.

Add creat* modify* attributes

simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.

extremely broken and I can only wonder how I got some much mileage out
of it.  The problem is that we deal with pointers to the groups
themselves, either in current_group or current_to and current_nto.
These pointers would break on reallocs.  So now the the basic togroups
is an array to pointers to Group.  Since the array can be resized at
any time, what we actually pass around is pointer to an array of
pointers to Group or Group ***.

Add copyrights

Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.

frontend to complete parsing of extended op reqdata.
Modify password extended operation to allow optional id (DN)
entry to change (not tested).  Also, provide room to allow
server side password generation (not implemented).  Added optional old
password field to support proxying (not implemented).
Need to implement replog() support.

user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.

No one complained, so here's the change to ldapdelete to add a -r switch to allow a branch of a directory tree to be removed.  The DN provided is searched recursively until the leaf nodes are hit, then everything is deleted.

Update single debug/release not to use service manager nor event manager.
Likely breaks MINGW32 port.

(excepting WIN32_LEAN_AND_MEAN).  Rework openlog/closelog use to
eliminate need for defines.

ifdefs to depend on _WINNT, which is bogus. Added _WIN32 back on these ifs,
and fixed some other include problems.

as s_addr member of in_addr may be a bitfield.

with .cf files...

See README 1.27 log

See README 1.27 log

from Booker Bense <bbense@networking.stanford.edu>.

avoid clashes with Kth Kerberos.

Fix creation of ldapadd link to ldapmodify

* all others: Added DESTDIR support

	dn: cn=foo
	changetype: modify
	replace: bar
	-

Replace old Id as needed (back-tcl).
Leave updating of contribWare to contributors (for now).