[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: connection problem



First of all, I would highly recommend that you upgrade to the latest
OpenLDAP 1.2.x version available.

Secondly, did you by any chance enable TCP wrappers?  You will need to
modifiy /etc/hosts.allow to allow your remote hosts for slapd (including,
apparently, localhost).

Randy

> Hello!
> 
> 
> I use openldap 1.2.9 on several servers without problem.
> 
> Today I try to start it on my desktop- RH 6.0, kernel 2.2.16,
> glibc2.1.3
> 
> When I try to connect I see in log:
> 
> Jul  3 12:48:28 dm slapd[4232]: slapd starting
> Jul  3 12:48:37 dm slapd[4232]: fd=13 connection from dm.aspec.ru
> (195.161.29.113) denied.
> Jul  3 12:53:23 dm slapd[4232]: fd=13 connection from gudvin.aspec.ru
> (195.161.29.124) denied.
> 
> 
> here is my ldap.conf:
> 
> #
> # LDAP Defaults
> #
> 
> # See ldap.conf(5) for details
> # This file should be world readable.
> 
> BASE    o=Aspec,c=RU
> HOST    dm.aspec.ru
> 
> #HOST   ldap.openldap.org ldap-master.openldap.org:666
> #PORT   389
> 
> #SIZELIMIT      12
> #TIMELIMIT      15
> #DEREF          never
> 
> And here is  slapd.conf
> #
> # See slapd.conf(5) for details on configuration options.
> # This file should NOT be world readable.
> #
> include         /etc/openldap/slapd.at.conf
> include         /etc/openldap/slapd.oc.conf
> schemacheck     off
> #referral       ldap://ldap.itd.umich.edu
> 
> pidfile         /var/run/slapd.pid
> argsfile        /var/run/slapd.args
> 
> #######################################################################
> # ldbm database definitions
> #######################################################################
> 
> database        ldbm
> #suffix         "dc=your-domain, dc=com"
> suffix          "o=Aspec, c=RU"
> directory       /usr/ldap
> #rootdn         "cn=root, dc=your-domain, dc=com"
> rootdn          "cn=root, o=Aspec, c=RU"
> rootpw          password
> # cleartext passwords, especially for the rootdn, should
> # be avoid.  See slapd.conf(5) for details.
> 
> 
> #access to * by * none
> #            by self read
> #           by self write
> 
> 
> 
> 
> --
> Dmitry Melekhov
> http://www.aspec.ru/~dm
> 2:5050/11.23@fidonet
> 
> 
> 
>