that prompts them through the process?
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
Subject: Re: RE: Re: Re: Linux Administration - Users
have the WINDOWS ADMINS DO USER MAINTENANCE
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
Subject: Re: Re: Linux Administration - Users
Security
Forensics @ UAT 1/10/09 12-3PM
Subject: Re: Re: Linux Administration - Users in (any) database
howto/why...
From: craigwh...@azapple.com
To: plug-discuss@lists.plug.phoenix.az.us
Date: Thu, 1 Jan 2009 09:36:32 -0700
On Thu, 2009-01-01 at 11:24 -0500, kitepi...@kitepilot.com wrote
Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
Date: Fri, 2 Jan 2009 08:47:23 -0700
From: cryptwo...@gmail.com
To: plug-discuss@lists.plug.phoenix.az.us
Subject: Re: Re: Linux Administration - Users in (any) database
howto/why...
ok now here is a question.
how well
@lists.plug.phoenix.az.us
Subject: Re: Re: Linux Administration - Users in (any) database
howto/why...
ok now here is a question.
how well would this concept play with something like open-likewise and
domain authentication?
how closely do you think we could merge the two user databases in this
case
On Fri, 2009-01-02 at 15:55 +, Lisa Kachold wrote:
AD takes care of the Windows side completely to include Domain Admin,
etc. OpenLDAP is trivial to configure for this.
open-likewise simply puts it's own framework over it all.
I would build up test systems to see what you like, but
open-LikeWise will not synchronise as far as i can tell, its more of a
authentication tool, or the free one is. but if your on a Linux
machine and need to auth against a Domain its handy.
It also appears that the next version of freeIPA (2.0) is looking to
make it less fedora only. which will be
On Fri, 2009-01-02 at 10:07 -0700, Stephen wrote:
open-LikeWise will not synchronise as far as i can tell, its more of a
authentication tool, or the free one is. but if your on a Linux
machine and need to auth against a Domain its handy.
It also appears that the next version of freeIPA (2.0)
On Fri, 2009-01-02 at 13:09 -0700, Joe wrote:
Craig,
Thanks for the info on FreeIPA. It sounds like you have quite a bit of
experience with LDAP. Maybe you can answer some questions.
In the past when I tried to configure LDAP with nsswitch, I remember
that I had to put the Admin
Security
Forensics @ UAT 1/10/09 12-3
Subject: Re: Re: Linux Administration - Users in (any) database
howto/why...
From: craigwh...@azapple.com
To: plug-discuss@lists.plug.phoenix.az.us
Date: Fri, 2 Jan 2009 13:24:20 -0700
On Fri, 2009-01-02 at 13:09 -0700, Joe wrote:
Craig
On Fri, 2009-01-02 at 16:40 -0700, Joe wrote:
Good point on TLS. The /etc/ldap.secret is where I had the problem. If
you put that file on an end users machine, wouldn't they be able to boot
into single user mode or sudo and read that file? Doesn't that file
provide the keys to the kingdom?
2009 16:40:20 -0700
From: j...@nationnet.com
To: plug-discuss@lists.plug.phoenix.az.us
Subject: Re: Re: Linux Administration - Users in (any)database
howto/why...
Good point on TLS. The /etc/ldap.secret is where I had the problem. If
you put that file on an end users machine
.
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
(503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
Forensics @ UAT 1/10/09 12-3PM
Subject: Re: Re: Re: Linux Administration - Users in (any) database
howto/why...
From
On Sat, 2009-01-03 at 02:48 +, Lisa Kachold wrote:
Here's the definitive guide for hammering down LDAP, noting defaults
for use, etc.
http://eatingsecurity.blogspot.com/2008/11/openldap-security.html
I'd hardly call it a definitive guide to hammering down LDAP when there
are only 2
Sorry Craig, I had to jump in again. smbpasswd -w drives you crazy? From
the Eating Security page, this is what I was talking about eariler:
Another file with a plain text password is /etc/ldap.secret. This file
must contain the rootdn password in plain text, but is again somewhat
mitigated
On Fri, 2009-01-02 at 21:08 -0700, Joe wrote:
Sorry Craig, I had to jump in again. smbpasswd -w drives you crazy? From
the Eating Security page, this is what I was talking about eariler:
Another file with a plain text password is /etc/ldap.secret. This file
must contain the rootdn password
@lists.plug.phoenix.az.us
Subject: Re: Re: Linux Administration - Users in (any) database
howto/why...
Good point on TLS. The /etc/ldap.secret is where I had the problem. If
you put that file on an end users machine, wouldn't they be able to boot
into single user mode or sudo and read
On Thu, 2009-01-01 at 09:01 -0700, Joe wrote:
That is a great question. First, let me say I don't have an answer. The
reason I'm responding is that Postgres scares me. The reason it scares
me is that I have had a number of times when upgrading postgres, the DB
files were not compatible with
On Thu, 2009-01-01 at 11:24 -0500, kitepi...@kitepilot.com wrote:
I think that LDAP is overkill for my application.
My users will authenticate only in/for one server, and probably to either
update a WEB site or drop/retrieve e-mail.
Some users may have WEB sites, some users may have
19 matches
Mail list logo