: ****Re: ****Re: Linux Administration - Users in (any)
> database howto/why...
> From: craigwh...@azapple.com
> To: plug-discuss@lists.plug.phoenix.az.us
> Date: Fri, 2 Jan 2009 20:21:16 -0700
>
> On Sat, 2009-01-03 at 02:48 +, Lisa Kachold wrote:
> > Here's the de
@ UAT 1/10/09 12-3PM
>
>
>> Date: Fri, 2 Jan 2009 16:40:20 -0700
>> From: j...@nationnet.com
>> To: plug-discuss@lists.plug.phoenix.az.us
>> Subject: Re: Re: Linux Administration - Users in (any) database
>> howto/why...
>>
>> Good point on TLS. The /
On Fri, 2009-01-02 at 21:08 -0700, Joe wrote:
> Sorry Craig, I had to jump in again. smbpasswd -w drives you crazy? From
> the Eating Security page, this is what I was talking about eariler:
>
> "Another file with a plain text password is /etc/ldap.secret. This file
> must contain the rootdn pas
Sorry Craig, I had to jump in again. smbpasswd -w drives you crazy? From
the Eating Security page, this is what I was talking about eariler:
"Another file with a plain text password is /etc/ldap.secret. This file
must contain the rootdn password in plain text, but is again somewhat
mitigated wi
On Sat, 2009-01-03 at 02:48 +, Lisa Kachold wrote:
> Here's the definitive guide for hammering down LDAP, noting defaults
> for use, etc.
> http://eatingsecurity.blogspot.com/2008/11/openldap-security.html
I'd hardly call it a definitive guide to hammering down LDAP when there
are only 2 A
2008/11/openldap-security.html
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
> Subject: Re: ****Re: ****Re: Linux Administration - Users in (any) database
r administration with access to the hash also.
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
> Subject: Re: ****Re: ****Re: Linux Administration - Users
i, 2 Jan 2009 16:40:20 -0700
> From: j...@nationnet.com
> To: plug-discuss@lists.plug.phoenix.az.us
> Subject: Re: Re: Linux Administration - Users in (any)database
> howto/why...
>
> Good point on TLS. The /etc/ldap.secret is where I had the problem. If
> you
On Fri, 2009-01-02 at 16:40 -0700, Joe wrote:
> Good point on TLS. The /etc/ldap.secret is where I had the problem. If
> you put that file on an end users machine, wouldn't they be able to boot
> into single user mode or sudo and read that file? Doesn't that file
> provide the keys to the kingdo
On Fri, 2009-01-02 at 16:40 -0700, Joe wrote:
> Good point on TLS. The /etc/ldap.secret is where I had the problem. If
> you put that file on an end users machine, wouldn't they be able to boot
> into single user mode or sudo and read that file? Doesn't that file
> provide the keys to the kingdo
Good point on TLS. The /etc/ldap.secret is where I had the problem. If
you put that file on an end users machine, wouldn't they be able to boot
into single user mode or sudo and read that file? Doesn't that file
provide the keys to the kingdom? Once you have full read access to the
directory. c
Security
Forensics @ UAT 1/10/09 12-3
> Subject: Re: ****Re: Linux Administration - Users in (any) database
> howto/why...
> From: craigwh...@azapple.com
> To: plug-discuss@lists.plug.phoenix.az.us
> Date: Fri, 2 Jan 2009 13:24:20 -0700
>
> On Fri, 2009-01-02 at 13:09 -0700,
On Fri, 2009-01-02 at 13:09 -0700, Joe wrote:
> Craig,
>
> Thanks for the info on FreeIPA. It sounds like you have quite a bit of
> experience with LDAP. Maybe you can answer some questions.
>
> In the past when I tried to configure LDAP with nsswitch, I remember
> that I had to put the Admin c
On Fri, 2009-01-02 at 10:07 -0700, Stephen wrote:
> open-LikeWise will not synchronise as far as i can tell, its more of a
> authentication tool, or the free one is. but if your on a Linux
> machine and need to auth against a Domain its handy.
>
> It also appears that the next version of freeIPA (
open-LikeWise will not synchronise as far as i can tell, its more of a
authentication tool, or the free one is. but if your on a Linux
machine and need to auth against a Domain its handy.
It also appears that the next version of freeIPA (2.0) is looking to
make it less fedora only. which will be v
On Fri, 2009-01-02 at 15:55 +, Lisa Kachold wrote:
> AD takes care of the Windows side completely to include Domain Admin,
> etc. OpenLDAP is trivial to configure for this.
>
> open-likewise simply puts it's own framework over it all.
> I would build up test systems to see what you like, but
Jan 2009 08:47:23 -0700
>> From: cryptwo...@gmail.com
>> To: plug-discuss@lists.plug.phoenix.az.us
>> Subject: Re: Re: Linux Administration - Users in (any) database
>> howto/why...
>>
>> ok now here is a question.
>>
>> how well would this concept play w
stphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
> Date: Fri, 2 Jan 2009 08:47:23 -0700
> From: cryptwo...@gmail.com
> To: plug-discuss@lists.plug.phoenix.az.us
> Subject: Re: Re: Linux Administration - Users in (any) database
> howto/why...
>
t = Kristy Westphal, AZ Department of Economic Security
> Forensics @ UAT 1/10/09 12-3PM
>
>> Subject: Re: Re: Linux Administration - Users in (any) database
>> howto/why...
>> From: craigwh...@azapple.com
>> To: plug-discuss@lists.plug.phoenix.az.us
>> Date: Thu,
actually have the WINDOWS ADMINS DO USER MAINTENANCE
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
> Subject: Re: ****Re: Linux Administrati
On Thu, 2009-01-01 at 11:24 -0500, kitepi...@kitepilot.com wrote:
> I think that LDAP is overkill for my application.
> My users will authenticate only in/for one server, and probably to either
> update a WEB site or drop/retrieve e-mail.
>
> Some users may have WEB sites, some users may have e-
On Thu, 2009-01-01 at 09:01 -0700, Joe wrote:
> That is a great question. First, let me say I don't have an answer. The
> reason I'm responding is that Postgres scares me. The reason it scares
> me is that I have had a number of times when upgrading postgres, the DB
> files were not compatible w
22 matches
Mail list logo
