U -_g @sRddlmZmZmZmZGdddeZGdddeeZGdddeeeZdS) )Plugin RedHatPlugin DebianPlugin UbuntuPlugincs4eZdZdZdZdZdZfddZddZZ S) LdapzLDAP configurationZldap)ZidentityZsysmgmtsystemz/etc/openldap/ldap.confcst|ddS)N/etc/ldap.conf)supersetup add_copy_specself __class__9/usr/lib/python3/dist-packages/sos/report/plugins/ldap.pyr s z Ldap.setupcCs|ddddS)Nr(\s*bindpw\s*)\S+z\1******) do_file_subr rrrpostprocsz Ldap.postproc) __name__ __module__ __qualname__Z short_descZ plugin_nameZprofiles ldap_confr r __classcell__rrrrr s  rcs0eZdZdZdZfddZfddZZS) RedHatLdap)Zopenldapz nss-pam-ldapd)r/etc/pam_ldap.confcsBt|dddddg||jdddd g|d dS) Nz/etc/openldap/certs/passwordz/etc/openldap/certs/pwfile.txtz/etc/openldap/certs/pin.txtz/etc/openldap/certs/*passw*z/etc/openldap/certs/key3.dbz/etc/openldap/certs/cert8.dbz/etc/openldap/certs/secmod.db/etc/nslcd.confrzcertutil -L -d /etc/openldap)r r Zadd_forbidden_pathr radd_cmd_outputr rrrr !s  zRedHatLdap.setupcs&tdD]}||ddqdS)N)rrr \1********)r rr)r filerrrr4s zRedHatLdap.postproc)rrrpackagesfilesr rrrrrrrs rcs0eZdZdZdZfddZfddZZS) DebianLdapz/etc/ldap/ldap.conf)Zslapdz ldap-utilscsftd}||jdddg|d|j|ddd|j|d d d|j|d d ddS) Nz,ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// z/etc/slapd.confz/etc/ldap/slapd.drz+ldapsearch -x -b '' -s base 'objectclass=*'z/-b cn=config '(!(objectClass=olcSchemaConfig))'Zconfiguration_minus_schemas)Zsuggest_filenamez-b cn=schema,cn=config dnZloaded_schemasz0-b cn=config '(olcAccess=*)' olcAccess olcSuffixZaccess_control_lists)r r r rr)r Z ldap_searchrrrr Cs*  zDebianLdap.setupcs*t|ddd|ddddS)NrrrZ ldapsearchz(olcRootPW\: \s*)\S+)r rrZdo_cmd_output_subr rrrrZs zDebianLdap.postproc)rrrrr r rrrrrrr">s r"N)Zsos.report.pluginsrrrrrrr"rrrr s"