- 论坛徽章:
- 0
|
写给所有OpenLDAP不能正常启动的人
操作系统:SunOS ms1.darren.com 5.8 Generic_117351-02 i86pc i386 i86pc。OPENLDAP版本:2.1.29。
- bash-2.05# more slapd.conf
- # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.23.2.8 2003/05/24 23:19:14 kurt Exp $
- #
- # See slapd.conf(5) for details on configuration options.
- # This file should NOT be world readable.
- #
- include /usr/local/etc/openldap/schema/core.schema
- include /usr/local/etc/openldap/schema/corba.schema
- include /usr/local/etc/openldap/schema/cosine.schema
- include /usr/local/etc/openldap/schema/inetorgperson.schema
- include /usr/local/etc/openldap/schema/misc.schema
- include /usr/local/etc/openldap/schema/openldap.schema
- include /usr/local/etc/openldap/schema/nis.schema
- include /usr/local/etc/openldap/schema/samba.schema
- # Define global ACLs to disable default read access.
- # Do not enable referrals until AFTER you have a working directory
- # service AND an understanding of referrals.
- #referral ldap://root.openldap.org
- pidfile /usr/local/var/slapd.pid
- argsfile /usr/local/var/slapd.args
- #loglevel -1
- #replogfile /var/log/ldap.log
- # Load dynamic backend modules:
- # modulepath /usr/local/libexec/openldap
- # moduleload back_bdb.la
- # moduleload back_ldap.la
- # moduleload back_ldbm.la
- # moduleload back_passwd.la
- # moduleload back_shell.la
- # Sample security restrictions
- # Require integrity protection (prevent hijacking)
- # Require 112-bit (3DES or better) encryption for updates
- # Require 63-bit encryption for simple bind
- # security ssf=1 update_ssf=112 simple_bind=64
- # Sample access control policy:
- # Root DSE: allow anyone to read it
- # Subschema (sub)entry DSE: allow anyone to read it
- # Other DSEs:
- # Allow self write access
- # Allow authenticated users read access
- # Allow anonymous users to authenticate
- # Directives needed to implement policy:
- # access to dn.base="" by * read
- # access to dn.base="cn=Subschema" by * read
- # access to *
- # by self write
- # by users read
- # by anonymous auth
- #
- # if no access controls are present, the default policy is:
- # Allow read by all
- #
- # rootdn can always write!
- #######################################################################
- # ldbm database definitions
- #######################################################################
- database bdb
- suffix "dc=darren,dc=com"
- rootdn "cn=root,dc=darren,dc=com"
- # Cleartext passwords, especially for the rootdn, should
- # be avoid. See slappasswd(8) and slapd.conf(5) for details.
- # Use of strong authentication encouraged.
- rootpw 1234
- # The database directory MUST exist prior to running slapd AND
- # should only be accessible by the slapd and slap tools.
- # Mode 700 recommended.
- directory /usr/local/var/openldap-data
- # Indices to maintain
- index objectClass eq
- access to *
- by self write
- by * read
- bash-2.05# more ldap.conf
- # $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 1.9 2000/09/04 19:57:01 kurt Exp $
- #
- # LDAP Defaults
- #
- # See ldap.conf(5) for details
- # This file should be world readable but not world writable.
- #BASE dc=example, dc=com
- #URI ldap://ldap.example.com ldap://ldap-master.example.com:666
- #SIZELIMIT 12
- #TIMELIMIT 15
- #DEREF never
- bash-2.05# /usr/local/libexec/slapd -d -1
- Killed
- bash-2.05# tail /var/log/syslog
- Jul 29 00:05:57 ms1.darren.com sendmail[3544]: [ID 801593 mail.info] i6SG5vMR003544: from=<wjz@darren.com>;, size=539, class=0, nrcpts=1, msgid=<200407281605.i6SG5vMR003544@ms1.darren.com>;, proto=ESMTP, daemon=MSA, relay=[10.1.2.19]
- Jul 29 00:06:08 ms1.darren.com sendmail[3546]: [ID 801593 mail.info] i6SG5vMR003544: to=<mail5@test.com>;, ctladdr=<wjz@darren.com>; (1000/1), delay=00:00:11, xdelay=00:00:05, mailer=esmtp, pri=120539, relay=ms1.test.com. [10.1.2.52], dsn=2.0.0, stat=Sent (i6SG63S0001503 Message accepted for delivery)
- Jul 29 00:09:10 ms1.darren.com sendmail[3548]: [ID 702911 mail.info] AUTH=server, relay=[10.1.2.19], authid=mail1, mech=LOGIN, bits=0
- Jul 29 00:09:10 ms1.darren.com sendmail[3548]: [ID 801593 mail.info] i6SG9AYe003548: from=<mail1@darren.com>;, size=567, class=0, nrcpts=1, msgid=<200407281609.i6SG9AYe003548@ms1.darren.com>;, proto=ESMTP, daemon=MSA, relay=[10.1.2.19]
- Jul 29 00:09:14 ms1.darren.com sendmail[3550]: [ID 801593 mail.info] i6SG9AYe003548: to=<mail5@test.com>;, ctladdr=<mail1@darren.com>; (2001/1), delay=00:00:04, xdelay=00:00:04, mailer=esmtp, pri=120567, relay=ms1.test.com. [10.1.2.52], dsn=2.0.0, stat=Sent (i6SG9Ae1001515 Message accepted for delivery)
- Jul 29 20:25:08 ms1.darren.com sendmail[3623]: [ID 801593 mail.info] i6TCOqcU003623: localhost [127.0.0.1] did not issue MAIL/EXPN/VRFY/ETRN during connection to MSA
- Jul 30 02:30:37 ms1.darren.com sendmail[4234]: [ID 702911 mail.info] AUTH=server, relay=[10.1.2.19], authid=wjz, mech=LOGIN, bits=0
- Jul 30 02:30:54 ms1.darren.com sendmail[4234]: [ID 801593 mail.info] i6TIUb16004234: from=<wjz@darren.com>;, size=2446917, class=0, nrcpts=1, msgid=<200407291830.i6TIUb16004234@ms1.darren.com>;, proto=ESMTP, daemon=MSA, relay=[10.1.2.19]
- Jul 30 02:31:17 ms1.darren.com sendmail[4236]: [ID 801593 mail.info] i6TIUb16004234: to=<mail5@test.com>;, ctladdr=<wjz@darren.com>; (1000/1), delay=00:00:40, xdelay=00:00:23, mailer=esmtp, pri=2566917, relay=ms1.test.com. [10.1.2.52], dsn=2.0.0, stat=Sent (i6TIV1G9001495 Message accepted for delivery)
- Jul 31 00:51:57 ms1.darren.com sendmail[4350]: [ID 801593 mail.info] i6UGpmH8004350: localhost [127.0.0.1] did not issue MAIL/EXPN/VRFY/ETRN during connection to MSA
- bash-2.05# tail /var/adm/messages
- Aug 17 20:42:34 ms1.darren.com fdc: [ID 114370 kern.info] fd0 at fdc0
- Aug 17 20:42:34 ms1.darren.com genunix: [ID 936769 kern.info] fd0 is /isa/fdc@1,3f0/fd@0,0
- Aug 17 20:42:40 ms1.darren.com pcplusmp: [ID 637496 kern.info] pcplusmp: asy (asy) instance 0 vector 0x4 ioapic 0x1 intin 0x4 is bound to cpu 0
- Aug 17 20:42:40 ms1.darren.com last message repeated 1 time
- Aug 17 20:42:40 ms1.darren.com isa: [ID 202937 kern.info] ISA-device: asy0
- Aug 17 20:42:40 ms1.darren.com genunix: [ID 936769 kern.info] asy0 is /isa/asy@1,3f8
- Aug 17 20:42:40 ms1.darren.com pcplusmp: [ID 398438 kern.info] pcplusmp: asy (asy) instance #1 vector 0x3 ioapic 0x1 intin 0x3 is bound to cpu 0
- Aug 17 20:42:40 ms1.darren.com last message repeated 1 time
- Aug 17 20:42:40 ms1.darren.com isa: [ID 202937 kern.info] ISA-device: asy1
- Aug 17 20:42:40 ms1.darren.com genunix: [ID 936769 kern.info] asy1 is /isa/asy@1,2f8
- bash-2.05# uname -a
- SunOS ms1.darren.com 5.8 Generic_117351-02 i86pc i386 i86pc
- bash-2.05#
复制代码 |
|