From owner-freebsd-questions@FreeBSD.ORG Thu May 11 21:37:29 2006 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9290F16A5EE for ; Thu, 11 May 2006 21:37:29 +0000 (UTC) (envelope-from norgaard@locolomo.org) Received: from strange.daemonsecurity.com (59.Red-81-33-11.staticIP.rima-tde.net [81.33.11.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 583EA444E4 for ; Thu, 11 May 2006 21:12:48 +0000 (GMT) (envelope-from norgaard@locolomo.org) Received: from [172.16.2.1] (charm.daemonsecurity.com [172.16.2.1]) by strange.daemonsecurity.com (Postfix) with ESMTP id 9F0422E024 for ; Thu, 11 May 2006 23:12:46 +0200 (CEST) Message-ID: <4463A8BD.2060306@locolomo.org> Date: Thu, 11 May 2006 23:12:29 +0200 From: =?UTF-8?B?RXJpayBOw7hyZ2FhcmQ=?= Organization: Locolomo.ORG User-Agent: Thunderbird 1.5.0.2 (X11/20060423) MIME-Version: 1.0 To: FreeBSD Questions Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms090506010303080800000408" Cc: Subject: Restricting root access to ldap X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 May 2006 21:37:51 -0000 This is a cryptographically signed message in MIME format. --------------ms090506010303080800000408 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Hi: How do I restrict root/administrative access to my ldap (openldap 2.3) directory? I want to allow root connection only from localhost or a list of authorized hosts, while allowing other users to connect from anywhere. Thanks, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 --------------ms090506010303080800000408 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIL5jCC Be8wggPXoAMCAQICCQCNA1Uf/OBPDDANBgkqhkiG9w0BAQUFADCBmTELMAkGA1UEBhMCRVMx GDAWBgNVBAoTD0RhZW1vbiBTZWN1cml0eTEeMBwGA1UECxMVQ2VydGlmaWNhdGUgQXV0aG9y aXR5MR4wHAYDVQQDExVDZXJ0aWZpY2F0ZSBBdXRob3JpdHkxJDAiBgkqhkiG9w0BCQEWFWNh QGRhZW1vbnNlY3VyaXR5LmNvbTEKMAgGA1UEBRMBMDAeFw0wNjA0MjAxMzE2NTBaFw0wNzA0 MjAxMzE2NTBaMGIxCzAJBgNVBAYTAkVTMRUwEwYDVQQKEwxMb2NvTG9tby5PcmcxFjAUBgNV BAMTDUVyaWsgTm9yZ2FhcmQxJDAiBgkqhkiG9w0BCQEWFW5vcmdhYXJkQGxvY29sb21vLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMPmPk5QnkyvR4ZNS/jYCYEk6/x/ mqSIqM7XXmikYX4AmbS4AbgJg7tY150ti87oYIjH4pnt1ReYWV4P2lDE2w0Db73Fk3TGpYcq XNUu4uRl8eoMX6Mh5I34tzJc+ZJqXW0pQtzP7JDgPvLddh0roY/ongaqpnrA6dDh0QfEC+ky z1abx9xmp776RPfRnbzjUht9VGPohiZFLyNfLgw5x4Q5/efDtx3tKDMJP67UnVd1tbclKbOs +HaqxYXNr1TJ9HIpRpfb4IhBFCvBDiiHUjbGtpi2EXeHuwoQ8cp7mjl6j1BfGaoFHvqzA1GD +156qJ9waxEvx/0XGudqWJeFTVkCAwEAAaOCAW4wggFqMA8GA1UdEwEB/wQFMAMCAQAwCwYD VR0PBAQDAgO4MB0GA1UdDgQWBBRpebgs44/nvl3Dw7F0Yrg/nx9puTCBzgYDVR0jBIHGMIHD gBSOYakm6rz5V4h0qO3QlbBuYT3ipaGBn6SBnDCBmTELMAkGA1UEBhMCRVMxGDAWBgNVBAoT D0RhZW1vbiBTZWN1cml0eTEeMBwGA1UECxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MR4wHAYD VQQDExVDZXJ0aWZpY2F0ZSBBdXRob3JpdHkxJDAiBgkqhkiG9w0BCQEWFWNhQGRhZW1vbnNl Y3VyaXR5LmNvbTEKMAgGA1UEBRMBMIIJAI0DVR/84E8BMCAGA1UdEQQZMBeBFW5vcmdhYXJk QGxvY29sb21vLm9yZzA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vd3d3LmRhZW1vbnNlY3Vy aXR5LmNvbS9jYS9kcy5jcmwwDQYJKoZIhvcNAQEFBQADggIBAMefA0DXBeUmPG353ldj4jQP TKusU49AGPtH0gI0W7gnc8L6NQb7/lzpF1xW3fVOXmDBSQrSzdsmPoUiQBOv8/GTPiJbktbr eHGPDDi7xTmNgGCh/gv9EECEc0casKs778FMhJxQDIKUrBpdxpxUVHxzR9m2MgCaiOPi0oru o5ZjdNh4PyfSrYkkMJmp9w7ouulyf7wSOwwyIxZixWHVIo0lJBZCFQqIcCXzmnLUhlUKqMGb 0sOsPh7GITecrfGAM8iBpLuRjGe3yDa8Xx2riflJLjKxqcSg0OIhibS3xkGTgoJhtAJBB21G CkcnHmLXmnXYZvfE/D4twmSGo3j4D79xFA5xMJU5IwNYT+agU2srRq11eZvtVK3p2sF2rgSK 99cbCHL0K3AhhiF9z+1uLjZO8UgnvB81rQG+Kzn/nvZgQ1bvxKnrtzs3UuKPyAXflNVSiMwO vUv04tBJcIGrdiav64BTQFBgguY7JWWkrsaTeEMUHXW6aUyGCfngQ2LR6McfDeZZLM0BKXiv pjozutGTR76khWqSsttSZQoGoNbMRcHodFCZ2RHSsM1rPKINY1w7vTnr8oEVD3D+pY1UrM/o vDkvS8ypr+gg66pMC0gXl7cReoFNiE118sHKlAEGKNlka3Pga2r+AL6KrjwCZHMwOFDheFoN k9rxTruKV0O0MIIF7zCCA9egAwIBAgIJAI0DVR/84E8MMA0GCSqGSIb3DQEBBQUAMIGZMQsw CQYDVQQGEwJFUzEYMBYGA1UEChMPRGFlbW9uIFNlY3VyaXR5MR4wHAYDVQQLExVDZXJ0aWZp Y2F0ZSBBdXRob3JpdHkxHjAcBgNVBAMTFUNlcnRpZmljYXRlIEF1dGhvcml0eTEkMCIGCSqG SIb3DQEJARYVY2FAZGFlbW9uc2VjdXJpdHkuY29tMQowCAYDVQQFEwEwMB4XDTA2MDQyMDEz MTY1MFoXDTA3MDQyMDEzMTY1MFowYjELMAkGA1UEBhMCRVMxFTATBgNVBAoTDExvY29Mb21v Lk9yZzEWMBQGA1UEAxMNRXJpayBOb3JnYWFyZDEkMCIGCSqGSIb3DQEJARYVbm9yZ2FhcmRA bG9jb2xvbW8ub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+Y+TlCeTK9H hk1L+NgJgSTr/H+apIioztdeaKRhfgCZtLgBuAmDu1jXnS2LzuhgiMfime3VF5hZXg/aUMTb DQNvvcWTdMalhypc1S7i5GXx6gxfoyHkjfi3Mlz5kmpdbSlC3M/skOA+8t12HSuhj+ieBqqm esDp0OHRB8QL6TLPVpvH3GanvvpE99GdvONSG31UY+iGJkUvI18uDDnHhDn958O3He0oMwk/ rtSdV3W1tyUps6z4dqrFhc2vVMn0cilGl9vgiEEUK8EOKIdSNsa2mLYRd4e7ChDxynuaOXqP UF8ZqgUe+rMDUYP7Xnqon3BrES/H/Rca52pYl4VNWQIDAQABo4IBbjCCAWowDwYDVR0TAQH/ BAUwAwIBADALBgNVHQ8EBAMCA7gwHQYDVR0OBBYEFGl5uCzjj+e+XcPDsXRiuD+fH2m5MIHO BgNVHSMEgcYwgcOAFI5hqSbqvPlXiHSo7dCVsG5hPeKloYGfpIGcMIGZMQswCQYDVQQGEwJF UzEYMBYGA1UEChMPRGFlbW9uIFNlY3VyaXR5MR4wHAYDVQQLExVDZXJ0aWZpY2F0ZSBBdXRo b3JpdHkxHjAcBgNVBAMTFUNlcnRpZmljYXRlIEF1dGhvcml0eTEkMCIGCSqGSIb3DQEJARYV Y2FAZGFlbW9uc2VjdXJpdHkuY29tMQowCAYDVQQFEwEwggkAjQNVH/zgTwEwIAYDVR0RBBkw F4EVbm9yZ2FhcmRAbG9jb2xvbW8ub3JnMDgGA1UdHwQxMC8wLaAroCmGJ2h0dHA6Ly93d3cu ZGFlbW9uc2VjdXJpdHkuY29tL2NhL2RzLmNybDANBgkqhkiG9w0BAQUFAAOCAgEAx58DQNcF 5SY8bfneV2PiNA9Mq6xTj0AY+0fSAjRbuCdzwvo1Bvv+XOkXXFbd9U5eYMFJCtLN2yY+hSJA E6/z8ZM+IluS1ut4cY8MOLvFOY2AYKH+C/0QQIRzRxqwqzvvwUyEnFAMgpSsGl3GnFRUfHNH 2bYyAJqI4+LSiu6jlmN02Hg/J9KtiSQwman3Dui66XJ/vBI7DDIjFmLFYdUijSUkFkIVCohw JfOactSGVQqowZvSw6w+HsYhN5yt8YAzyIGku5GMZ7fINrxfHauJ+UkuMrGpxKDQ4iGJtLfG QZOCgmG0AkEHbUYKRyceYteaddhm98T8Pi3CZIajePgPv3EUDnEwlTkjA1hP5qBTaytGrXV5 m+1UrenawXauBIr31xsIcvQrcCGGIX3P7W4uNk7xSCe8HzWtAb4rOf+e9mBDVu/Eqeu3OzdS 4o/IBd+U1VKIzA69S/Ti0Elwgat2Jq/rgFNAUGCC5jslZaSuxpN4QxQddbppTIYJ+eBDYtHo xx8N5lkszQEpeK+mOjO60ZNHvqSFapKy21JlCgag1sxFweh0UJnZEdKwzWs8og1jXDu9Oevy gRUPcP6ljVSsz+i8OS9LzKmv6CDrqkwLSBeXtxF6gU2ITXXywcqUAQYo2WRrc+Brav4Avoqu PAJkczA4UOF4Wg2T2vFOu4pXQ7QxggP8MIID+AIBATCBpzCBmTELMAkGA1UEBhMCRVMxGDAW BgNVBAoTD0RhZW1vbiBTZWN1cml0eTEeMBwGA1UECxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5 MR4wHAYDVQQDExVDZXJ0aWZpY2F0ZSBBdXRob3JpdHkxJDAiBgkqhkiG9w0BCQEWFWNhQGRh ZW1vbnNlY3VyaXR5LmNvbTEKMAgGA1UEBRMBMAIJAI0DVR/84E8MMAkGBSsOAwIaBQCgggIp MBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTA2MDUxMTIxMTIz MVowIwYJKoZIhvcNAQkEMRYEFFDVFAZpuFv8T37dukv7TzbAQLDdMFIGCSqGSIb3DQEJDzFF MEMwCgYIKoZIhvcNAwcwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIH MA0GCCqGSIb3DQMCAgEoMIG4BgkrBgEEAYI3EAQxgaowgacwgZkxCzAJBgNVBAYTAkVTMRgw FgYDVQQKEw9EYWVtb24gU2VjdXJpdHkxHjAcBgNVBAsTFUNlcnRpZmljYXRlIEF1dGhvcml0 eTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MSQwIgYJKoZIhvcNAQkBFhVjYUBk YWVtb25zZWN1cml0eS5jb20xCjAIBgNVBAUTATACCQCNA1Uf/OBPDDCBugYLKoZIhvcNAQkQ AgsxgaqggacwgZkxCzAJBgNVBAYTAkVTMRgwFgYDVQQKEw9EYWVtb24gU2VjdXJpdHkxHjAc BgNVBAsTFUNlcnRpZmljYXRlIEF1dGhvcml0eTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0 aG9yaXR5MSQwIgYJKoZIhvcNAQkBFhVjYUBkYWVtb25zZWN1cml0eS5jb20xCjAIBgNVBAUT ATACCQCNA1Uf/OBPDDANBgkqhkiG9w0BAQEFAASCAQAUpIbJGGjcLZ7xfLjJs1rii8aozHs+ lv98eWg/ABj2nh7gdzxxWTYA1OWryrAlNddKR53cigx3lAtniz67LPzLQenF+FEH9V5l70AH 8Tf4NAexrAtji7qtw4HzqZPhd2yHCZqIH8nwfzkowvHk6bRx2Az0+fLq3qnHLOUJ9C06zDk9 7lvHTwZpc0G26A57DhvyrhL3Cjf3i+daunD7Ti1fP02dan12fDotcmmcTbA9Jwcf4Y6+GAri EFIDQ165i0gqnD9xKSx3nKqzBq3jUTRpFCy8B2nzTlghwlNUQ6Fnt8rJFGkambV7bbMu2+CV 9EqSzzzqQ/8qJk6AcjI+aDcJAAAAAAAA --------------ms090506010303080800000408--