I just wanted to note that the Center for Internet Security recently published
a security benchmark for OpenLDAP (based on 2.3):
http://www.cisecurity.org/bench_openldap.html
A lot of the content seems to cover standard practise (e.g. what you get by
default on most Linux distributions in terms
Andreas Hasenack a écrit :
> Em Qua, 2007-09-26 às 17:12 +0200, Guillaume Rousse escreveu:
>> So, I set up a very minimal default password policy object, as it seems
>> to be quite mandatory:
>> dn: cn=default,ou=policies,dc=futurs,dc=inria,dc=fr
>> cn: default
>> objectClass: pwdPolicy
>> objectCl
Hello,
I'm trying to use slapo-chain to do automatic chaining on the slave..
I see the howto about this, I think my configuration is correct, but is
doesn't work all times!!
I have a strange problem..It work correctly for some times, but if
modify my configuration for otherthing, example to add
Dieter Kluenter wrote:
> RFC 2255 describes URL extensions like bindname and x-foo. RFC 4516
> only shows a hypothetical example with e- extension. Part A1 of RFC
> 4516 says that bindname had been removed due to lack of known
> implementations.
More discussion:
http://www.openldap.org/lists/ie
Buchan Milne wrote:
I just wanted to note that the Center for Internet Security recently published
a security benchmark for OpenLDAP (based on 2.3):
Funny, I just stumbled over their page last night but didn't bother to
register to download the doc.
http://www.cisecurity.org/bench_openldap.
Howard Chu skrev, on 27-09-2007 20:09:
[...]
As usual, if you want to know "best practices", the best way to get that
is just to ask us or read the docs we've already written...
s/you want/one wants/
Buchan is pretty hip at keeping up with best practices, about 90%
judging on his latest Red
On Thursday 27 September 2007 20:09:19 Howard Chu wrote:
> > Unfortunately, they show configuration for slurpd in their section
> > on "Redundant LDAP Servers".
> >
> > I wonder if it is worthwhile providing CIS with feedback?
>
> Now that you've pointed it out, I went and downloaded it. I find the
Buchan Milne wrote:
On Thursday 27 September 2007 20:09:19 Howard Chu wrote:
Unfortunately, they show configuration for slurpd in their section
on "Redundant LDAP Servers".
I wonder if it is worthwhile providing CIS with feedback?
Now that you've pointed it out, I went and downloaded it. I fin
