[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Local root user changing passwords...

To: openldap-software@OpenLDAP.org
Subject: Re: Local root user changing passwords...
From: David Morton <mortonda@osprey.net>
Date: 04 Dec 2002 16:04:25 -0600
In-reply-to: <D150D1F8AE369E47BADE1FC9C6D8561115B60F@digeo-e2k03.digeo.com>
Organization:
References: <D150D1F8AE369E47BADE1FC9C6D8561115B60F@digeo-e2k03.digeo.com>

Someone correct me if I'm wrong, but if the openldap server is running
on a box that someone has root access to, that someone has "god" powers
over that database.  They could always read/change the rootdn in the
slapd config file, and restart the server.  

On Wed, 2002-12-04 at 13:30, Wade Winright wrote:
> Hello all, 
> 
> I have searched for answers on this topic to no avail.
> 
> I am trying to restrict a local hosts "root" user from changing LDAP users passwords. I have deleted the root user from the LDAP database, but it seems that that had no effect. Any ideas? Pointers?
> 
> Running:
> RH 8.0
> Default OpenLDAP (2.0.25)
> 
> Clients:
> RH 8.0 defaults
> 
> THanks for your time,
> 
> Wade
-- 
David Morton
Vice President
Osprey Network Technologies

References:
- Local root user changing passwords...
  - From: "Wade Winright" <WadeW@digeo.com>

Prev by Date: Migrating from iPlanet, "binary" issues
Next by Date: Another newbie question
Index(es):
- Chronological
- Thread