Package: webmin-ldap-user-simple
Version: 1.4-3
Severity: critical
Justification: root security hole
This is a sarge-based debian-edu main-server, installed of the image
from 2005-04-22, upgraded with the latest packages from sarge.
when I try to add a user, I get an error message like this:
ERROR: LDAP backend broken.
For unknown reasons the ldap backend can not answer queries.
It could be that some schema files were updated during an unrelated
update, but that is just a lucky guess. In that case you could try to
restart the ldap backend by running as root
in the error-log, these lines shows up:
VAR1 = [
'Line 136',
'Function WebminLdapSkolelinux::ldap_connect'
];
$VAR2 = 'passwd in cleartext';
$VAR3 = 'cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no';
Restarting slapd does not help. Actually - accoring to klausade, this
doesn't happen right after the server is installed, but only after.
What does help is to turn of sambasync on the config file. But then you
have to add the users to samba manually, which actually works without
problems.
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.10-x300
Locale: LANG=nb_NO, LC_CTYPE=nb_NO (charmap=ISO-8859-1)
Versions of packages webmin-ldap-user-simple depends on:
ii debconf 1.4.30.11 Debian configuration management sy
pn debian-edu-config Not found.
pn libcgi-application-perl Not found.
pn libdigest-md5-perl Not found.
pn libhtml-fromtext-perl Not found.
pn libhtml-template-perl Not found.
pn libio-socket-ssl-perl Not found.
pn libnet-ldap-perl Not found.
pn libtext-unaccent-perl Not found.
pn libtime-hires-perl Not found.
pn libunicode-string-perl Not found.
ii perl [libstorable-perl] 5.8.4-8 Larry Wall's Practical Extraction
pn webmin Not found.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
