[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How do I reduce database corruption?



<quote who="Dan Shriver">

>   In general the corruption results from a bad modification
> request such as:
>
>   dn: cn=x,o=y
>   cn: x
>
>       to
>
>   dn:cn=z,o=y
>   cn: x
>
>       but if this screws up the indicies shouldn't the protocol
> send a blocking message back to the browser, and halt the
> operation?

hi.

i'm new to openldap, so this is more of another question then
able to answer your Q .. but what happens when the above
modify takes place? what kind of curroption? I ask because
last night i was using LDAP explorer while playing with
samba/ldap and i did many modifications like the above (changing
the dn: cn=XX to something else, but leaving everything else
the same) and I did not have any problems .........This was
accomplished using LDAPExplorer's "Rename" option,
changing the cn=XXX will be ignored(at least it was for me)
when hitting the MODIFY option. or maybe ldapexplorer
is just a better ldap client then the ones in your list ..

maybe there is a problem I just haven't noticed it? what
made you think there was curroption? could you no longer
access the record? or .. ?

The system i did those changes on is Solaris 7 with
Openldap 2.0.23, apache+php4+ldapexlorer(latest versions)

or maybe i just don't understand the change you have
in the example.

my slapd.conf config:
include         /usr/local/openldap/etc/openldap/schema/core.schema
include         /usr/local/openldap/etc/openldap/schema/cosine.schema
include         /usr/local/openldap/etc/openldap/schema/nis.schema
include
/usr/local/openldap/etc/openldap/schema/inetorgperson.schema
include         /usr/local/openldap/etc/openldap/schema/misc.schema
include         /usr/local/openldap/etc/openldap/schema/mull.schema
include         /usr/local/openldap/etc/openldap/schema/samba.schema

pidfile         /usr/local/openldap/var/slapd.pid
argsfile        /usr/local/openldap/var/slapd.args
loglevel        256
schemacheck     on
password-hash   {MD5}
database        ldbm
directory       /usr/local/openldap/var/ldap
suffix          "o=linuxpowered,c=us"
rootdn          "cn=admin,o=linuxpowered,c=us"

# Indices to maintain
index   cn,sn,uid       pres,eq,sub
index   rid             eq
index   uidNumber       eq
index   gidNumber       eq
index   objectClass     eq
index   default         sub
index   primaryGroupID  eq
lastmod on

access to attribute=userPassword
        by dn="cn=admin,o=linuxpowered,c=us" write
        by anonymous auth
        by self write
        by * none

access to *
        by dn="cn=admin,o=linuxpowered,c=us" write
        by self write
        by * read

access to dn=".*,ou=Roaming,o=linuxpowered,c=us"
        by dnattr=owner write
        by dn="cn=admin,o=linuxpowered,c=us"