Commit Graph

25 Commits

Author SHA1 Message Date
Kurt Zeilenga
02028df6c6 Add additional password file support. 2003-03-31 06:29:59 +00:00
Kurt Zeilenga
b53eef9b81 -V updates 2003-01-20 21:16:58 +00:00
Kurt Zeilenga
01660fbdd9 Minor cleanup 2002-12-05 03:30:20 +00:00
Kurt Zeilenga
4a0bfbdd64 Add ldapwhoami/ldapcompre to flags map 2002-12-05 00:19:21 +00:00
Kurt Zeilenga
8de258d2e2 Patch: 'ldapmodify -y file' reads password from file (ITS#2031)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
            ================
Adapted by Kurt Zeilenga for inclusion in OpenLDAP.  My comments are
marked with enclosed with square brackets (e.g. [Kurt's comment] below.
            ================

If I run ldapmodify & co from a script, I don't want to use '-W password'
because the password shows up in the output of 'ps' for everyone,
and I can't pipe the password to 'ldapmodify -w' because -w uses
getpassphrase() which reads from the tty instead of stdin.
So I added '-y file' which reads the password from file.  The programs
exit if the file cannot be read.

[Complete contents of file is used as password.  Use:
	echo -n "secret" > password
to create a file with "secret" as the password.  The -n avoids
adding a newline (which would invalidate the password).  Note
that echo is a builtin and hence its arguments are not visible
to 'ps'.]

I changed ldapmodify, ldapmodrdn, ldapdelete, ldapsearch, ldapcompare.
I did not bother to change ldappasswd and ldapwhoami, because they
prompt for many passwords.  [I fixed up ldapwhoami.]

Rerun autoconf after applying this patch. [Done.]

Note:  I do not know if Windows NT has fstat(), so I set HAVE_FSTAT to
undef in portable.nt.  (fstat() is used to warn if the file is publicly
readable or writeable.)  [I used fstat() to set the buffer size to
read.]

[Note: using the contents of a file extends the tools to support
passwords which could not normally be provided using getpassphrase()
or via the command line.]

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, Aug 2002.
[Kurt D. Zeilenga <kurt@openldap.org>, Aug 2002.]
2002-08-24 05:47:17 +00:00
Kurt Zeilenga
3925c471f9 Reserve digit flags 2002-06-15 22:18:51 +00:00
Kurt Zeilenga
91088eaa84 Full_Name: Norbert Klasen
Version: head
OS: SuSE Linux 7.3
URL: ftp://ftp.openldap.org/incoming/norbert.klasen.rejects.20020605.patch
Submission from: (NULL) (62.104.216.66)

This patch adds an '-S' option to ldapmodify. If a filename is specified with
this option, records which could not successfully be added/modified/deleted from
the LDAP server will be written to the specified file. Most useful in
conjunction with '-c' option.
2002-06-06 00:31:09 +00:00
Kurt Zeilenga
bd137c60a3 detail table to better indicate reserved/used args 2002-06-02 04:21:59 +00:00
Kurt Zeilenga
af92beb21e a misc. few updates... 2001-12-27 00:42:04 +00:00
Kurt Zeilenga
a83ba7b69d Reserve -E/-e for extensions, syntax yet to be defined. 2001-12-05 17:56:34 +00:00
Kurt Zeilenga
e3f81de77e reserve -V for version information 2001-01-20 01:16:19 +00:00
Kurt Zeilenga
5361dbe52c Allocate -H for URI specification
Clarify use of other flags
2000-08-25 02:10:14 +00:00
Kurt Zeilenga
5cb06787f9 Fix up rcsid 2000-07-29 03:15:58 +00:00
Kurt Zeilenga
e82c3ff6b2 Update args based upon latest SASL usage 2000-07-19 01:19:06 +00:00
Kurt Zeilenga
d18737073c Update args based upon intended SASL usage 2000-07-16 00:51:44 +00:00
Kurt Zeilenga
d2b05a3858 Rework SASL command line arguments. Default is now to authenticate
using best available mechanism.  (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
2000-07-15 23:25:46 +00:00
Kurt Zeilenga
5fc22599e2 Update SASL code to reuse context through life of session.
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Kurt Zeilenga
15c403bd15 -C/-R changes 2000-06-25 20:22:59 +00:00
Kurt Zeilenga
5f20cf1ed5 Modify ldapsearch(1) significantly. Now handles LDAPv3 search
references, extended results, and extended partial results.  LDIF
extended to support these new features and reported version 2.
-L now limits output to LDIFv1 for compatibility reasons.  No
-L is now LDIFv2.  Old alternative form is no longer supported.

Use LDAP_TMPDIR (in ldap_config.h) instead of hardcoded /tmp
Use LDAP_FILE_URI_PREFIX (in ldap_config.h) instead of hardcoded
	file://tmp/
2000-06-25 00:35:17 +00:00
Kurt Zeilenga
2783decefa update based upon latest changes and thoughts 2000-05-03 18:58:20 +00:00
Kurt Zeilenga
54f1ebafff Add description of global command line arguments.... 2000-04-25 10:34:19 +00:00
Kurt Zeilenga
0bad880b0b Add TLS/SASL flags 2000-04-12 00:03:07 +00:00
Kurt Zeilenga
d61873e930 Add RCSid 2000-01-11 01:18:51 +00:00
Kurt Zeilenga
041c1545e8 Update usage and man page. 1999-12-10 04:59:28 +00:00
Kurt Zeilenga
a0097fe1d9 Add table of command line arguments used by clients 1999-12-09 17:04:42 +00:00