Is openldap meant for only Linux machines? Can we set up ope ldap on Linux machine and access it on windows machine? I have installed open ldap on windows but don't know how to add users or see values.
No, there are Windows ports. See for example www.userbooster.de. But you already know that, as you've already installed it, so why are you asking?
Of course. Again I don't know why you're even asking.
This is documented: see ldapadd, ldapsearch, etc.
Your questions seem fairly pointless to me, and asking them here ditto.
Given three links may help you :
1) To install ldap : https://www.userbooster.de/en/support/feature-articles/openldap-for-windows-installation.aspx
2) To add users or ldif file : http://www.kukusan-network.blogspot.in/2012/01/how-to-setting-ldap-openldap-in-windows.html
3) To explore ldap directory : http://ldaptool.sourceforge.net/
look at
http://www.zytrax.com/books/ldap/ch5/index.html#step1-ldif
you need basically can use ldapmodify with the -a param and construct your ldif file with the right changeType: add/modify
see here:
http://docs.oracle.com/cd/E19199-01/816-6400-10/lmodify.html
Related
I'm using CentOS 6.5 where I successfully install Oracle XE. I want to change my Initial Hostname 'NAFD.WS' to something else. Will this affect Oracle Xe installation? If yes, what's the work around aside from reinstalling the Oracle Xe.
Thanks for your time dear SO.
Looks like your question is addressed here: http://minhtech.com/oracle/oracle-11g-xe-hostname-change/
Basically:
Edit both the listener.ora and tnsnames.ora files at $ORACLE_HOME/network/admin/listener.ora and $ORACLE_HOME/network/admin/tnsnames.ora. In the files, replace instances of the old hostname with the new hostname. Finally, log into root and force a reload:
$ su -
$ /etc/init.d/oracle-xe force-reload
In terms of database functionality, it shouldn't matter. I haven't installed XE in a long time, so, I'm not sure if there's an Oracle inventory, like there is w/ SE and EE. If so, that would be broken, as the hostname is written into the inventory, and there's no supported way to update that. That would imply you can't apply any patches, but, with XE, there aren't any made available anyhow.
If you were running RAC, you'd need to wipe and re-configure CRS, update local and remote listener configs, etc.
But, for XE, I think you'll be fine.
As always, if you care about the data in the database, be sure to take a backup before you proceed.
-Mark
I want to let my friend access my server so he can host his website. Let's call him Joris.
# useradd joris
note that I'm Debian. So now a /home/joris has been created. This is cool and all. BUT. He can
cd /
cd /etc/
cd /var/www/
He can cd pratically everywhere, maybe not delete but he can see everything, which I don't want him to. Is that normal?
First, I would suggest you reading the Debian Administrator's Handbook by either using aptitude install debian-handbook or using a search engine to find a copy online. It covers many topics about security that will be of use to you, especially when sharing a server with multiple users.
As far as being able to access various directories, Debian is VERY relaxed for my tastes with it's default permissions setup. Check the default UMASK settings (/etc/login.defs) so that you can have a more secure setup when adding users.
I o-rx from things like /var/www and grant access to those using Access Control Lists (ACLs). If you are unfamiliar with ACLs I highly recommend you familiarize yourself with them as they are much more robust than the default permissions system.
As far as what all you should protect, that will depend on your setup. Most things in /etc will be self explanatory whether or not you can remove read access for users outside of the owner/group (like your web server configuration directory). You can also use permissions to limit access to specific binaries that users should never have access to, like mysql or gcc.
In the long run your setup will be unique to your specific needs. Reading the Debian Handbook will be immensely helpful in helping you secure your box not only from the outside, but from the inside as well.
Hope this helps point you in the right direction.
I've found several rsync commands for moving my wordpress site from one local machine to a remote server. I've successfully used the following command suggested by another Stackoverflow user:
rsync -aHvz /path/to/sfolder name#remote.server:/path/to/remote/dfolder
Would you say that it's enough, or would you suggest other attributes?
It's my understanding that an SSH connection would be safer. How does this command change if I want to make it over SSH. Also are there other things to be done besides including the SSH command ( like generating/installing the keys etc etc ). I just starting so a detailed explanation for a noob would be very much appreciated.
Pakal
There are thousands of ways in which you can customize this powerful command. Don't worry about SSH, by default its using SSH. Rest of the options depend on your requirement. You can consider '--perms' to preserve permissions. Similarly '-t' preserves times. I don't know if its relevant in transfer of a site.
Also '-n' would show you a dry run of transfer scenario. '-B' switch allows you to override custom block size.
Probably you should have a look at options yourself and find the appropriate ones by running 'info rsync'.
the above command will use ssh and i see no problems with it's general usage.
I have installed OpenLDAP server.
How to add user (entry) in LDAP server. And how to open command window for that server, so that I can run the ldap command on it:
:
My requirement is : in my app i want to authenticate users which are added in Openldap server
but i am only able to install OpenLDAP server on windows os,, but how to add the user i unable to get the way. what is the way to add user in openLDAP whic is install on windows 7 OS? this is what i want to ask
You can add entries to the LDAP database in several ways. While slapd is running you can use ldapadd/ldapmodify to add entries. You can also use slapadd with an ldif file as well.
Read up on the usage of these tools and then come back with any question you may have afterwards.
You also need to understand how to construct a directory information tree in order to give some structure to the data you are storing in the LDAP database.
You can do it easily by using LDAPAdmin
Dynamically I want to edit/update hosts(etc/hosts) file to add domain.
To edit hosts(etc/hosts) file require Admin privileged. Using Linux I can do this by this command
sudo gedit /etc/hosts
But I am trying to do this from using Programming Language.
How can i do it?
Your best bet is to use something like SSH and connect to the computer as root (or sudo in a system()), modify the file then disconnect. The added advantage of this is the convenience of prompting the user for the password.
To do this without prompting, the user would have to set up some means to accomplish it as root. I.e. setuid'ing a helper application, installing a password-less key, modifying a LDAP tree, or various other ways. That's a little 'icky' for the lack of a better term.
There's no way to make this work for user who does not normally have privilege escalation capabilities.
Your program will need to be running with appropriate privileges. One of the classic techniques is to make the file owned by root and set the setuid bit. When your program is run, it will become root and will be able to modify /etc/hosts.
That said, setuid code is risky. A bug in the code can cause the program to do something so bad that your system becomes unuseable. Certain bugs can be used by malicious users to run arbitrary programs as root and take over your system.
You still must have the right permissions to edit the file.
To change the file, open the file in read/write/append mode (ie. mode "a" using fopen()) and write the new text to the end of the file.
I'm assuming you are at the command prompt, where you could issue that sudo command ..
Provided you have the access rights, as you claim you do, then any programming language that can add a line of text to an existing textfile (or create it, when not, which is unlikely), will work. You might habe to give that programm some additional rights, but that's a different topic!
Summary: what language do you know? => use that!