[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: using -y option for ldapsearch

To: "Sai" <bangaru.adabala@gmail.com>, openldap-technical@openldap.org
Subject: Re: using -y option for ldapsearch
From: SATOH Fumiyasu <fumiyas@osstech.jp>
Date: Mon, 01 Jun 2009 22:10:16 +0900
In-reply-to: <87k53whzkt.wl%fumiyas@osstech.jp>
Organization: OSS Technology, Inc. / Samba-JP / LDAP-JP / Apache-JP
References: <5291CE201E3C450DB656C423B1B2A253@SURYA> <87k53whzkt.wl%fumiyas@osstech.jp>
User-agent: Wanderlust/2.14.0 (Africa) XEmacs/21.4 (Instant Classic)

Oops...

At Mon, 01 Jun 2009 22:07:46 +0900,
SATOH Fumiyasu wrote:
> If the pwdfile contains LF (\x0a) or others, strip it.
> OpenLDAP ldap* commands use the entire contents in a pwdfile.
> I think this is a bad design...
> 
> Try:
> 
>   $ (umask 0077; echo -n "DN's password" >pwdfile)
>   $ 

    $ ldapsearch -x -h <Machine> -p <port> -s one -D <DN> -b <BASE_DN> -y pwdfile
> 
> or:
> 
>   $ tr -d '\n' <pwdfile \
>   |ldapsearch -x -h <Machine> -p <port> -s one -D <DN> -b <BASE_DN> -y /dev/stdin
> 
> IIRC, older OpenLDAP ldap* commands cannot use /dev/stdin for
> the -y option.

Follow-Ups:
- RE: using -y option for ldapsearch
  - From: "Sai" <bangaru.adabala@gmail.com>

References:
- using -y option for ldapsearch
  - From: "Sai" <bangaru.adabala@gmail.com>
- Re: using -y option for ldapsearch
  - From: SATOH Fumiyasu <fumiyas@osstech.jp>

Prev by Date: Re: using -y option for ldapsearch
Next by Date: Re: 'unary operator expected' error when TLS turned on - SOLVED
Index(es):
- Chronological
- Thread