Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
OpenLDAP howto, complete and very easy guide for gentoo
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks
View previous topic :: View next topic  
Author Message
Redeeman
l33t
l33t


Joined: 25 Sep 2003
Posts: 957
Location: Denmark

PostPosted: Fri Sep 16, 2005 7:46 pm    Post subject: OpenLDAP howto, complete and very easy guide for gentoo Reply with quote

hello.. i have written a complete and easy guide for how to get openldap up and running with ssl on gentoo, and how to integrate it into pam/nss, i try to explain stuff i would have liked to know when i tried getting this working, i have spend a week figuring these things out, with help from especially kerframil and uberlord, which have been very helpful, also people on #ldap freenode have helped, and now i have written this howto, which should save you the trouble, and make you have your openldap setup in less than an hour :)

hope it is useful.

http://wiki.kaspersandberg.com/doku.php?id=howtos:openldap
_________________
Sandberg Enterprises
Back to top
View user's profile Send private message
robbyjo
Guru
Guru


Joined: 06 Apr 2003
Posts: 462

PostPosted: Fri Sep 16, 2005 7:49 pm    Post subject: Reply with quote

That's nice... But which version of OpenLDAP are you explaining? I heard that there are some caveats between v2.0 and 2.1 and 2.2. I'm not sure what they are but I always failed installing OpenLDAP on my system. Can you give me some clues? Thanks...
Back to top
View user's profile Send private message
Redeeman
l33t
l33t


Joined: 25 Sep 2003
Posts: 957
Location: Denmark

PostPosted: Fri Sep 16, 2005 7:50 pm    Post subject: Reply with quote

2.2, the very latest in portage, i have also found that not many guides does this, but i do.

server log # equery list openldap
[ Searching for package 'openldap' in all categories among: ]
* installed packages
[I--] [ ] net-nds/openldap-2.2.28 (0)
_________________
Sandberg Enterprises
Back to top
View user's profile Send private message
lorenb
Apprentice
Apprentice


Joined: 24 Aug 2002
Posts: 207
Location: Toronto, ON

PostPosted: Fri Sep 16, 2005 8:50 pm    Post subject: Reply with quote

I see you have configured MD5 passwords. Not very secure with hash databases available. You be much better off using salted MD5 (smd5) or salted SHA (ssha).
Back to top
View user's profile Send private message
Redeeman
l33t
l33t


Joined: 25 Sep 2003
Posts: 957
Location: Denmark

PostPosted: Fri Sep 16, 2005 8:56 pm    Post subject: Reply with quote

i didnt know you could use salted md5 with openldap
edit: i have updated the howto, however, i have not changed it in /etc/ldap.conf, since im not sure it works with pam..
_________________
Sandberg Enterprises
Back to top
View user's profile Send private message
lorenb
Apprentice
Apprentice


Joined: 24 Aug 2002
Posts: 207
Location: Toronto, ON

PostPosted: Fri Sep 16, 2005 10:31 pm    Post subject: Reply with quote

It works with PAM. At least it does here. Also if you need a tool to manage your directory, I wrote one for GNOME called LAT (LDAP Administration Tool).
Back to top
View user's profile Send private message
Redeeman
l33t
l33t


Joined: 25 Sep 2003
Posts: 957
Location: Denmark

PostPosted: Fri Sep 16, 2005 10:47 pm    Post subject: Reply with quote

oh i didnt realize it was you who wrote it...

i like the idea of a mono based one, but i simply do not want gnome-sharp, i hate gnome.. what stuff from gnome-sharp are you using anyway? it doesent seem like any of the stuff it does is depending on gnome.
_________________
Sandberg Enterprises
Back to top
View user's profile Send private message
lorenb
Apprentice
Apprentice


Joined: 24 Aug 2002
Posts: 207
Location: Toronto, ON

PostPosted: Fri Sep 16, 2005 11:14 pm    Post subject: Reply with quote

Redeeman wrote:
oh i didnt realize it was you who wrote it...

i like the idea of a mono based one, but i simply do not want gnome-sharp, i hate gnome.. what stuff from gnome-sharp are you using anyway? it doesent seem like any of the stuff it does is depending on gnome.


There is not much offhand: the Program object, the About dialog and maybe one other widget. I also use it to open the default system browser and email client. I'd probably need to require Gtk# 2.5/2.6 to move away from that stuff today.

If you don't like GNOME that's cool. I like it myself and try into intergate LAT into it where it makes sense.
Back to top
View user's profile Send private message
Redeeman
l33t
l33t


Joined: 25 Sep 2003
Posts: 957
Location: Denmark

PostPosted: Fri Sep 16, 2005 11:41 pm    Post subject: Reply with quote

requiring gnome-sharp is just adding alot unnessecary dependencies, thunderbird can open with default gnome browser without having gnome. else, adding a dialog to set default browser might be proven.
_________________
Sandberg Enterprises
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum