Commit Graph

90 Commits

Author SHA1 Message Date
Pierangelo Masarati
704ed641eb allow attribute exclusion list in selective replica 2002-03-30 08:57:41 +00:00
Pierangelo Masarati
53e28a63a9 fix typo 2002-03-30 08:46:35 +00:00
Kurt Zeilenga
95691dc8b4 ITS#1680: Fix idle timeout typo 2002-03-25 17:26:07 +00:00
Kurt Zeilenga
409398ea2d s/rootDSEfile/rootDSE/ 2002-02-07 18:17:24 +00:00
Kurt Zeilenga
400af27afa Add clarification to password-hash directive 2002-01-30 00:41:36 +00:00
Howard Chu
7f68a95bac Added TLSVerifyClient configuration notes 2002-01-27 04:49:32 +00:00
Kurt Zeilenga
7ac207dc05 rm noautosubtypes 2002-01-15 02:47:06 +00:00
Kurt Zeilenga
0e2af54a3f Update copyright statements 2002-01-04 21:17:25 +00:00
Kurt Zeilenga
f021404b41 disallow bind_v2 is now default 2001-12-21 04:45:04 +00:00
Kurt Zeilenga
7caa803b59 Undocument 'schemacheck off' 2001-12-19 21:28:34 +00:00
Kurt Zeilenga
ff723903c5 Some index clarifications 2001-12-18 02:24:09 +00:00
Howard Chu
dfd26b8d95 Added description of "subordinate" keyword. 2001-12-15 07:15:32 +00:00
Kurt Zeilenga
493b415255 Rework indexing code, removing "autolang" and making
"subtypes" and "lang" default behavior.
2001-12-05 00:06:03 +00:00
Pierangelo Masarati
ae74c1c97c small adjustment 2001-12-04 17:13:25 +00:00
Pierangelo Masarati
6d3df52af9 update limits stuff 2001-12-04 17:10:17 +00:00
Mark Adamson
bd091ce276 Allow size and time limits in slapd.conf for anonymous bound search operations 2001-11-21 20:28:15 +00:00
Pierangelo Masarati
cf13ded4fe access control man page 2001-11-03 18:03:10 +00:00
Kurt Zeilenga
fcd1ce0e28 Use defined Root DSE attributes.
Developed by Julius Enarusai/IBM
Copyright IBM Corp. 2001

Use of this source code is subject to the terms of The OpenLDAP
Public License Version 2.7, 7 September 2001.  No trademarks of the
IBM Corporation are to be used to identify, endorse or promote any
products derived from this code without the prior written consent
of IBM.
2001-10-23 23:29:41 +00:00
Kurt Zeilenga
f7690b1194 Password-hash doesn't support UNIX, KERBEROS, SASL schemes. 2001-08-29 19:37:32 +00:00
Kurt Zeilenga
a9a5a3997d Add dnnolocking warning 2001-08-29 17:08:01 +00:00
Pierangelo Masarati
6a5b253bc6 allow multiple limits setting on one global/per backend config line 2001-08-04 11:09:25 +00:00
Pierangelo Masarati
4919363fa0 more intuitive special limits configuration 2001-08-03 17:25:39 +00:00
Pierangelo Masarati
f35545b058 fix a couple of typos; schemacheck was duplicated 2001-08-01 10:47:44 +00:00
Pierangelo Masarati
8471ef7ed0 add global, per backend and per op_ndn time/size soft, hard and to-be-checked limits (exploited by back-ldbm); see slapd.conf(5) for details 2001-08-01 10:09:04 +00:00
Pierangelo Masarati
2e79b7616b regex-based per op_ndn time/size limits 2001-07-28 12:07:40 +00:00
Pierangelo Masarati
d9889c28ef suffix option; allows partial replication of a database 2001-07-24 13:39:43 +00:00
Randy Kunkee
0ef87764d7 Move backend_syncfreq code down into back-ldbm. Creates new configuration
for LDBM backends called "dbsync", which takes minimum of one argument up
to 3 args which are sync frequency, # of delays, and delay periods.  See
man page update for "dbsync" configuration for more details.
2001-06-28 09:20:33 +00:00
Kurt Zeilenga
1229cfcc3f Backout directory config option 2001-06-22 21:00:24 +00:00
Kurt Zeilenga
ff993c7ddb Misc updates to password codes / docs 2001-06-13 05:40:24 +00:00
Kurt Zeilenga
cc6fab319e Add support for separate max incoming for anonymous and authenticated
sessions (defaults: 256K and 16M respectively).
2001-05-29 20:00:55 +00:00
Kurt Zeilenga
49a4319b07 document sockbuf_max_incoming 2001-05-29 16:10:08 +00:00
Kurt Zeilenga
351e436dcf Add an LDBM backend "directory" directive (in addition to
the existing database "directory" directive) to allow setting
of a DB_ENV directory.  Should likely be database specific.
2001-05-29 01:51:37 +00:00
Kurt Zeilenga
990ab4b119 Randfile 2001-05-02 19:52:58 +00:00
Kurt Zeilenga
26e3fc4625 Document the "threads" directive 2000-10-18 00:22:30 +00:00
Kurt Zeilenga
9520b708eb Fix typo in concurrency description 2000-10-18 00:15:32 +00:00
Kurt Zeilenga
282b192474 Note that the directory containing the replogfile as well as
the slurpd temporary directory should have limited read/write/execute
access.
2000-10-16 22:19:29 +00:00
Kurt Zeilenga
df47e87ec3 Zap defaultaccess option 2000-10-13 04:46:50 +00:00
Kurt Zeilenga
bbe9651ca9 fix maxbufsize=factor typo 2000-10-07 02:07:39 +00:00
Kurt Zeilenga
a912e6eea0 Make sure authzid form produces a valid subject DN. Support
both u: and dn: forms.
Rework sasl-regex DN be of the form
	uid=user,cn=realm,cn=mech,cn=authz
Fix up slapd.conf(5)
2000-10-06 23:50:38 +00:00
Kurt Zeilenga
1e7fe604e9 Comment on rootpw only be valid if rootdn is with namingContext 2000-10-06 21:19:20 +00:00
Kurt Zeilenga
1b635156ab s/saslregex/sasl-regex/
Other minor updates
2000-10-06 21:16:36 +00:00
Mark Adamson
bf1ee530ea Implementation of SASL authorization. 2000-09-21 17:32:54 +00:00
Kurt Zeilenga
34f8561467 Update slurpd with StartTLS and additional SASL parameters 2000-09-15 23:41:07 +00:00
Kurt Zeilenga
5852f7188b Add 'defaultSearchBase' configuration directive to help support
brain-damaged LDAPv2 clients.
2000-09-11 21:57:14 +00:00
Kurt Zeilenga
3342ea3b49 Add more bind allow/disallow flags 2000-09-11 18:24:24 +00:00
Kurt Zeilenga
2e13824d0d Add "allow tls_2_anon" to allow StartTLS to force session to anonymous.
Add "disallow tls_authc" to disallow StartTLS when session is authenticated.
Create and use connection2anonymous routine for consistency.
2000-09-08 22:59:01 +00:00
Kurt Zeilenga
db67d7cdc5 Add sasl-host directive 2000-08-30 03:50:16 +00:00
Kurt Zeilenga
26e8ba267d Add security factors to man page 2000-08-28 19:17:37 +00:00
Kurt Zeilenga
9715e7f008 Add disallow and requires to man page. Fix sasl ssf handling bug. 2000-08-28 18:58:13 +00:00
Kurt Zeilenga
95e11598ca Add URI to admin guide in See Also section 2000-08-24 23:18:06 +00:00