| [861] | 1 | --- o-f.config.ldif     2008-07-05 06:24:48.000000000 -0400 | 
|---|
|  | 2 | +++ b-m.config.ldif     2008-07-05 06:25:34.000000000 -0400 | 
|---|
|  | 3 | @@ -123,7 +123,7 @@ | 
|---|
|  | 4 | passwordMaxFailure: 3 | 
|---|
|  | 5 | nsslapd-accesslog: /var/log/dirsrv/slapd-scripts/access | 
|---|
|  | 6 | nsslapd-lastmod: on | 
|---|
|  | 7 | -nsslapd-security: off | 
|---|
|  | 8 | +nsslapd-security: on | 
|---|
|  | 9 | passwordMaxAge: 8640000 | 
|---|
|  | 10 | nsslapd-auditlog-logrotationtimeunit: day | 
|---|
|  | 11 | passwordResetFailureCount: 600 | 
|---|
|  | 12 | @@ -180,7 +180,7 @@ | 
|---|
|  | 13 | nsslapd-referralmode: | 
|---|
|  | 14 | nsslapd-maxdescriptors: 1024 | 
|---|
|  | 15 | nsslapd-conntablesize: 1024 | 
|---|
|  | 16 | -nsslapd-sslclientauth: off | 
|---|
|  | 17 | +nsslapd-sslclientauth: allowed | 
|---|
|  | 18 | nsslapd-config: cn=config | 
|---|
|  | 19 | nsslapd-instancedir: | 
|---|
|  | 20 | nsslapd-schemadir: /etc/dirsrv/slapd-scripts/schema | 
|---|
|  | 21 | @@ -217,7 +217,8 @@ | 
|---|
|  | 22 | nsSSLSessionTimeout: 0 | 
|---|
|  | 23 | nsSSLClientAuth: allowed | 
|---|
|  | 24 | nsSSL2: off | 
|---|
|  | 25 | -nsSSL3: off | 
|---|
|  | 26 | +nsSSL3: on | 
|---|
|  | 27 | +nsSSL3Ciphers: +rsa_rc4_128_md5 | 
|---|
|  | 28 | nsSSLSupportedCiphers: SSL3::rc4::RC4::MD5::128 | 
|---|
|  | 29 | nsSSLSupportedCiphers: SSL3::rc4export::RC4::MD5::128 | 
|---|
|  | 30 | nsSSLSupportedCiphers: SSL3::rc2::RC2::MD5::128 | 
|---|
|  | 31 | @@ -315,6 +316,15 @@ | 
|---|
|  | 32 | objectClass: extensibleObject | 
|---|
|  | 33 | cn: uniqueid generator | 
|---|
|  | 34 |  | 
|---|
|  | 35 | +# RSA, encryption, config | 
|---|
|  | 36 | +dn: cn=RSA,cn=encryption,cn=config | 
|---|
|  | 37 | +objectClass: top | 
|---|
|  | 38 | +objectClass: nsEncryptionModule | 
|---|
|  | 39 | +cn: RSA | 
|---|
|  | 40 | +nsSSLPersonalitySSL: ldap/better-mousetrap | 
|---|
|  | 41 | +nsSSLToken: internal (software) | 
|---|
|  | 42 | +nsSSLActivation: on | 
|---|
|  | 43 | + | 
|---|
|  | 44 | # options, features, config | 
|---|
|  | 45 | dn: cn=options,cn=features,cn=config | 
|---|
|  | 46 | objectClass: top | 
|---|
|  | 47 | @@ -1264,3 +1274,12 @@ | 
|---|
|  | 48 | nsslapd-pluginVendor: Fedora Project | 
|---|
|  | 49 | nsslapd-pluginDescription: Salted Secure Hashing Algorithm (SSHA512) | 
|---|
|  | 50 |  | 
|---|
|  | 51 | +# mapname, mapping, sasl, config | 
|---|
|  | 52 | +dn: cn=mapname,cn=mapping,cn=sasl,cn=config | 
|---|
|  | 53 | +objectClass: top | 
|---|
|  | 54 | +objectClass: nsSaslMapping | 
|---|
|  | 55 | +cn: mapname | 
|---|
|  | 56 | +nsSaslMapRegexString: \(.*\) | 
|---|
|  | 57 | +nsSaslMapBaseDNTemplate: uid=\1,ou=People,dc=scripts,dc=mit,dc=edu | 
|---|
|  | 58 | +nsSaslMapFilterTemplate: (objectClass=posixAccount) | 
|---|
|  | 59 | + | 
|---|