[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5505) Attribute value for 'modifiersName' in case of overlays



ando@sys-net.it wrote:
>> Just a feature request for convenience:
>>
>> Would it be possible to set the value of attribute 'modifiersName' to the
>> DN of
>> the overlays' configuration entry under cn=config if an entry was modified
>> by an
>> overlay? In this case one would have a direct link to the configuration if
>> needed. Currently 'cn=<overlay name>' (e.g cn=Referential Integrity
>> Overlay) is
>> added which does not refer to an existing entry at all.
> 
> Technically, I don't see any problem, except that overlays (and software
> modules, in general) do not hold a direct reference to their config
> entry's DN, if any (e.g. when back-config is not in use, the data
> structure is in place, but not in LDIF form; please correct me if I'm
> wrong).  I wonder whether exposing such detail makes sense, or risks
> breaking any security.  Probably I'm getting paranoid...

As a quick fix to your legitimate issue, I've added to HEAD the 
refint_modifiersname parameter that allows to customize the name used 
for internal modifications.  Please test.

p.



Ing. Pierangelo Masarati
OpenLDAP Core Team

SysNet s.r.l.
via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
---------------------------------------
Office:  +39 02 23998309
Mobile:  +39 333 4963172
Email:   pierangelo.masarati@sys-net.it
---------------------------------------