Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-11-14 Thread Martijn van Duren
On Sun, 2021-11-14 at 14:08 +0100, vifino wrote: > On Wed Nov 10, 2021 at 9:46 AM CET, Martijn van Duren wrote: > > On Fri, 2021-10-15 at 06:13 +, Klemens Nanni wrote: > > > On Sun, Oct 03, 2021 at 10:05:56AM +, Klemens Nanni wrote: > > > > On Sat, Oct 02, 2021 at 07:03:21PM +0200, vifino w

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-11-14 Thread vifino
On Wed Nov 10, 2021 at 9:46 AM CET, Martijn van Duren wrote: > On Fri, 2021-10-15 at 06:13 +, Klemens Nanni wrote: > > On Sun, Oct 03, 2021 at 10:05:56AM +, Klemens Nanni wrote: > > > On Sat, Oct 02, 2021 at 07:03:21PM +0200, vifino wrote: > > > > On Sat Oct 2, 2021 at 6:36 PM CEST, Raf Czl

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-11-10 Thread Martijn van Duren
On Fri, 2021-10-15 at 06:13 +, Klemens Nanni wrote: > On Sun, Oct 03, 2021 at 10:05:56AM +, Klemens Nanni wrote: > > On Sat, Oct 02, 2021 at 07:03:21PM +0200, vifino wrote: > > > On Sat Oct 2, 2021 at 6:36 PM CEST, Raf Czlonka wrote: > > > > On Sat, Oct 02, 2021 at 02:15:53PM BST, vifino wr

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-10-14 Thread Klemens Nanni
On Sun, Oct 03, 2021 at 10:05:56AM +, Klemens Nanni wrote: > On Sat, Oct 02, 2021 at 07:03:21PM +0200, vifino wrote: > > On Sat Oct 2, 2021 at 6:36 PM CEST, Raf Czlonka wrote: > > > On Sat, Oct 02, 2021 at 02:15:53PM BST, vifino wrote: > > > > Index: ldapd.conf.5 > > > > ===

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-10-03 Thread Klemens Nanni
On Sat, Oct 02, 2021 at 07:03:21PM +0200, vifino wrote: > On Sat Oct 2, 2021 at 6:36 PM CEST, Raf Czlonka wrote: > > On Sat, Oct 02, 2021 at 02:15:53PM BST, vifino wrote: > > > Index: ldapd.conf.5 > > > === > > > RCS file: /cvs/src/usr

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-10-02 Thread vifino
On Sat Oct 2, 2021 at 6:36 PM CEST, Raf Czlonka wrote: > On Sat, Oct 02, 2021 at 02:15:53PM BST, vifino wrote: > > Index: ldapd.conf.5 > > === > > RCS file: /cvs/src/usr.sbin/ldapd/ldapd.conf.5,v > > retrieving revision 1.27 > > diff -

Re: [PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-10-02 Thread Raf Czlonka
On Sat, Oct 02, 2021 at 02:15:53PM BST, vifino wrote: > Index: ldapd.conf.5 > === > RCS file: /cvs/src/usr.sbin/ldapd/ldapd.conf.5,v > retrieving revision 1.27 > diff -u -p -u -p -r1.27 ldapd.conf.5 > --- ldapd.conf.5 24 Jun 2020

[PATCH] usr.sbin/ldapd: Match bind DN by suffix instead of complete DN.

2021-10-02 Thread vifino
Hello. While using ldapd(8), I noticed that the allow/deny rules match the bound DN in a (to me) inconvenient way. Assuming I had a subtree ou=humans,dc=example,dc=org, users in that subtree and I wanted to allow all users to get read access to other users info, I would have to create a rule for