Re: Security problem with slapd/slurpd?

2002-10-17 Thread Torsten Landschoff
Hi Massimiliano, Matt, On Thu, Oct 17, 2002 at 11:15:31AM -0400, Matt Zimmerman wrote: > > When slapd (LDAP server daemon) is configured to replicate itself to > > another server, on each addition/modification to the directory it will > > store the changes to be replicated in /var/lib/ldap/replog

Re: Security problem with slapd/slurpd?

2002-10-17 Thread Torsten Landschoff
Hi Massimiliano, Matt, On Thu, Oct 17, 2002 at 11:15:31AM -0400, Matt Zimmerman wrote: > > When slapd (LDAP server daemon) is configured to replicate itself to > > another server, on each addition/modification to the directory it will > > store the changes to be replicated in /var/lib/ldap/replog

Re: Security problem with slapd/slurpd?

2002-10-17 Thread Matt Zimmerman
On Wed, Oct 16, 2002 at 11:08:11AM +0200, Massimiliano Mirra wrote: > When slapd (LDAP server daemon) is configured to replicate itself to > another server, on each addition/modification to the directory it will > store the changes to be replicated in /var/lib/ldap/replog. This > directory is wor

Re: Security problem with slapd/slurpd?

2002-10-17 Thread Matt Zimmerman
On Wed, Oct 16, 2002 at 11:08:11AM +0200, Massimiliano Mirra wrote: > When slapd (LDAP server daemon) is configured to replicate itself to > another server, on each addition/modification to the directory it will > store the changes to be replicated in /var/lib/ldap/replog. This > directory is wor

Re: Security problem with slapd/slurpd?

2002-10-17 Thread Javier Fernández-Sanguino Peña
On Wed, Oct 16, 2002 at 11:08:11AM +0200, Massimiliano Mirra wrote: > > Am I missing something or should a bug be filed? I would say a bug needs to be fixed (based on your account of the issue :) Let the maintainer/security team, take a further look into this.. Javi

Re: Security problem with slapd/slurpd?

2002-10-17 Thread Javier Fernández-Sanguino Peña
On Wed, Oct 16, 2002 at 11:08:11AM +0200, Massimiliano Mirra wrote: > > Am I missing something or should a bug be filed? I would say a bug needs to be fixed (based on your account of the issue :) Let the maintainer/security team, take a further look into this.. Javi -- To UNSU

Security problem with slapd/slurpd?

2002-10-16 Thread Massimiliano Mirra
When slapd (LDAP server daemon) is configured to replicate itself to another server, on each addition/modification to the directory it will store the changes to be replicated in /var/lib/ldap/replog. This directory is world readable and entries like userPassword will be visible (although on sensib

Security problem with slapd/slurpd?

2002-10-16 Thread Massimiliano Mirra
When slapd (LDAP server daemon) is configured to replicate itself to another server, on each addition/modification to the directory it will store the changes to be replicated in /var/lib/ldap/replog. This directory is world readable and entries like userPassword will be visible (although on sensi