Package: ldap-utils Version: 2.2.23-1 (Sarge) Severity: grave
Hi,
I use slappasswd on a box called 'Tom' to generate passwords in php which are used to update user details on a ldap server, called 'Jerry'. The php script directly contacts to the ldap server over an ssl-tunnel.
Some days ago users started complaining their changed passwords didn't work anymore, so I went debugging and I found this:
On the webserver only ldap-utils was installed because of slappasswd. But since the last apt-get upgrade slappasswd seems being thrown away and replaced by a symlink pointing to /usr/lib/slapd, which isn't present.
tom.3 /usr/sbin# ll slappasswd lrwxrwxrwx 1 root root 12 2005-04-20 22:05 slappasswd -> ../lib/slapd tom.3 /usr/sbin# ll ../lib/slapd ls: ../lib/slapd: No such file or directory
On the other box, the LDAP server Jerry, both ldap-utils and the server slapd are installed. This box has the /usr/lib/slapd:
jerry.0 /usr/sbin# ll slappasswd lrwxrwxrwx 1 root root 12 2005-04-13 16:45 slappasswd -> ../lib/slapd jerry.0 /usr/sbin# ll ../lib/slapd -rwxr-xr-x 1 root root 626584 2005-04-01 18:59 ../lib/slapd
Seems /usr/lib/slapd (when present) detects with which name it was called, and changes behaviour accordingly... :S
These packages are installed:
tom.3 ~# dpkg -l | egrep "(ldap|slap)" ii ldap-utils 2.2.23-1 OpenLDAP utilities ii libldap-2.2-7 2.2.23-1 OpenLDAP libraries ii libldap2 2.1.30-3 OpenLDAP libraries ii libldap2-dev 2.1.30-3 OpenLDAP development libraries ii php4-ldap 4.3.10-10 LDAP module for php4
jerry.0 ~# dpkg -l | egrep "(ldap|slap)" ii ldap-utils 2.2.23-1 OpenLDAP utilities ii libldap-2.2-7 2.2.23-1 OpenLDAP libraries ii libldap2 2.1.30-3 OpenLDAP libraries ii libnss-ldap 220-1 NSS module for using LDAP as a naming servic ii postfix-ldap 2.1.5-9 LDAP map support for Postfix ii pure-ftpd-ldap 1.0.19-4 Pure-FTPd FTP server with LDAP user authenti ii slapd 2.2.23-1 OpenLDAP server (slapd)
BTW: /usr/lib/slapd is not listed in a search for slapd in the Debian packages... http://packages.debian.org/cgi-bin/search_contents.pl?word=slapd&searchmode=searchfiles&case=insensitive&version=testing&arch=i386 Seems only the symlinks are included in the results? Why?
So... I think ldap-utils lacks some dependency on a package containing the /usr/lib/slapd. According to the `dpkg -l` /usr/lib/slapd only exists in package slapd. I don't want to run slapd on the webserver, but I want slappasswd to generate encryptes passwords there...
I will now temporarily fix this by manually copying /usr/lib/slapd from Jerry to Tom.
Greetings, Hans van Kranenburg -- Technische Hogeschool Rijswijk Lange Kleiweg 80 2288 GK Rijswijk The Netherlands
T 070-3401876 E [EMAIL PROTECTED]
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
