[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Olc deployment vs slapd.conf based deployment

To: Daniel Pluta <daniel@pluta.biz>
Subject: Re: Olc deployment vs slapd.conf based deployment
From: Brian Reichert <reichert@numachi.com>
Date: Mon, 18 Sep 2017 10:12:23 -0400
Cc: Michael Str??der <michael@stroeder.com>, openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <d998b647-f6e3-aac5-ada5-ac9f1699a865@pluta.biz>
References: <CALm_VjikYjnYEcrfKXYjm8AFt0VQ7EV1crGX=tXst3-RUbr7fQ@mail.gmail.com> <WM!5ccf6f006a0b3aa9abfbc3f9c9be3eb021708e582b17a98c6ed49d59b8e29485947e7650daf5ed804e3554164491fa2d!@mailstronghold-1.zmailcloud.com> <78567B9241600A3CA0EAC7A6@[192.168.1.30]> <b9e230a5-1dc0-b01f-ae4d-d23e0cd21d3e@stroeder.com> <WM!2056d11326b77cae4108e23999f0a6268f3993b708b522f6b62189222846339a4ad2c8ab4c093c059746abe16d83eddb!@mailstronghold-1.zmailcloud.com> <09DC3AC4FD5C91D7F0D9EA03@[192.168.1.30]> <18a7cbf1-2127-9576-09ac-501801362d6e@stroeder.com> <56f47a1a-8489-80d0-36f7-b3333cb972cb@pluta.biz> <d3dc933b-ee6b-8271-4b06-53f2232bfc37@stroeder.com> <d998b647-f6e3-aac5-ada5-ac9f1699a865@pluta.biz>
User-agent: Mutt/1.5.9i

On Sat, Sep 16, 2017 at 04:24:36PM +0200, Daniel Pluta wrote:
> On 16.09.2017 09:04, Michael Str??der wrote:
> >Daniel Pluta wrote:
> >>Call it strange, useless, insane, fine or whatever, but my customers
> >>(also anybody who's interested in using a distinct service) should
> >>be able to get a chance for a detailed view into the running
> >>configuration of each service - before and while using it. slapd's
> >>cn=config supports this, not perfectly but better than any other
> >>service I'm aware of. For further details see our paper from
> >>LDAPcon2011.

I'm jumping in late here.  I'm curious about this talk.  I see a YouTube
playlist of LDAPCon 2011 talkshere; which one should I look at for these
details?

  https://www.youtube.com/playlist?list=PLXuMrj-t1hqGdOJvswPFvNtwZFHD5SODK

> >
> >I very well remember your interesting talk and that you give read access 
> >to olcRootDN to prove it's not set.
> 
> 
> It was olcRootPw: to prove that it's not present and thus there is no 
> slapd-BOFH (aka administrative man-in-the-middle).
> 
> I very well remember the shocked/laughing faces of (parts of) the 
> audience right after I switched to the slide containing this at first 
> surely suicidal seeming ACL.
> 
> Forget about it. It's sufficient to keep in mind that the future lies in 
> cn=config. ;-)
> 
> 

-- 
Brian Reichert				<reichert@numachi.com>
BSD admin/developer at large

Follow-Ups:
- Re: Olc deployment vs slapd.conf based deployment
  - From: Dieter Klünter <dieter@dkluenter.de>

References:
- Re: Olc deployment vs slapd.conf based deployment
  - From: rammohan ganapavarapu <rammohanganap@gmail.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Quanah Gibson-Mount <quanah@symas.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Michael Ströder <michael@stroeder.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Quanah Gibson-Mount <quanah@symas.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Michael Ströder <michael@stroeder.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Daniel Pluta <daniel@pluta.biz>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Michael Ströder <michael@stroeder.com>
- Re: Olc deployment vs slapd.conf based deployment
  - From: Daniel Pluta <daniel@pluta.biz>

Prev by Date: Re: Olc deployment vs slapd.conf based deployment
Next by Date: Re: Olc deployment vs slapd.conf based deployment
Index(es):
- Chronological
- Thread