[CentOS] Tracking specific fixes into backports
I apologize if this is a simple noob question - I looked around and couldn't find an easy answer. My auditor presenting me with some findings re: httpd (apache) and said I have to upgrade to the newest version. They are basing their findings on the "version" of Apache installed - but are unaware of the fixlevel. Is there an easy way that I can take a specific Mitre or Securityfocus issue and see if the fix has been backported into the most up to date version of a Centos RPM. While this particular instance is in regards to Apache, I suspect I'll have to do this some more in the future with other RPMs as well. Thanks for any insight. -- Andy Akins Director of Development NICUSA, Tennessee A Partnership with Tennessee.gov Phone: (615) 313-0305 Email: a...@egovtn.org Visit www.tn.gov - the official website of the State of Tennessee * CONFIDENTIALITY NOTICE: This email and any attachments are confidential. If you are not the intended recipient, you do not have permission to disclose, copy, distribute, or open any attachments. If you have received this email in error, please notify us immediately by returning it to the sender and deleting this copy from your system. Thank you. NIC, Inc., Tennessee * ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Having trouble with LDAP Authentication...
I¹ve google and searched, and have had very little luck... I have: 1. Installed all the packages. 2. Configured and have running OpenLDAP. 3. Migrated my passwd/shadow/group/hosts files into the directory 4. Tested the directory using ldapsearch 5. Installed LAM (web interface to LDAP authentication) 6. Added a user using LAM. 7. Confirmed user is in directory. 8. Confirmed user is not in /etc/passwd 9. Confirmed using ³getent passwd | grep username² that the user is listed. 10. Confirmed using ³getent passwd² shows two records for each user except ldap-only users (one for /etc/passwd, one for LDAP). However, ³id username² Returns unknown user And trying to log in as username at either the terminal or ssh fails, and upon examining the logs, the error message says unknown user. I configured /etc/pam.d/system-auth using authcongfig-tui, adding only the pam_mkhomedir.so line (and I tried it without that line as well). Everything seems right but its not working. Can anyone offer any suggestions as to where I should be looking? If necessary, I¹ll post my /etc/openldap/slapd.conf, /etc/openldap/ldap.conf, /etc/pam.d/system-auth, and /etc/nsswitch.conf files I just didn¹t want to send them if not necessary. Any help or suggestions would be appreciated. Thanks! -- Andy Akins Director of Development NICUSA, Tennessee A Partnership with Tennessee.gov Phone: (615) 313-0305 Email: a...@egovtn.org Visit www.tn.gov - the official website of the State of Tennessee * CONFIDENTIALITY NOTICE: This email and any attachments are confidential. If you are not the intended recipient, you do not have permission to disclose, copy, distribute, or open any attachments. If you have received this email in error, please notify us immediately by returning it to the sender and deleting this copy from your system. Thank you. NIC, Inc., Tennessee * ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Having trouble with LDAP Authentication...
Ryan and Paul... Thank you for your suggestions and help I was able to track it down to three separate things: an improper ACL, nscd, and iptables. Everything is working fine now. Again, thanks for your insight! -- Andy Akins Director of Development NICUSA, Tennessee A Partnership with Tennessee.gov Phone: (615) 313-0305 Email: a...@egovtn.org Visit www.tn.gov - the official website of the State of Tennessee * CONFIDENTIALITY NOTICE: This email and any attachments are confidential. If you are not the intended recipient, you do not have permission to disclose, copy, distribute, or open any attachments. If you have received this email in error, please notify us immediately by returning it to the sender and deleting this copy from your system. Thank you. NIC, Inc., Tennessee * ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
