SHIFT-WIKI - Sjoerd Hooft's InFormation Technology
This WIKI is my personal documentation blog. Please enjoy it and feel free to reach out through blue sky if you have a question, remark, improvement or observation. See below for the latest additions, or use the search or tags to browse for content.
SuSE LDAP
Summary: On this page I'll explain on how to setup ldap as an authentication source for Suse Enterprise Server 10
Date: Around 2008
Refactor: 7 December 2024: Checked links and formatting.
Suse Installation Update Server
Summary: How to setup a SLES 11 Installation Server.
Date: Around 2010
Refactor: 16 April 2025: Checked links and formatting.
Change Passwords Users in SUN LDAP Server
Summary: How to change a password for SUN LDAP server users with a convenient script.
Date: Around 2012
Refactor: 29 April 2025: Checked links and formatting.
For the convenience of client support a script has been created to easily change the password of users. Simply follow these steps to change the password of an user:
- Log on to solarisbox as clsupport
- The change password script is automatically started
- Fill in the username of the user you need to change the password for
- The new password is shown, email the user the new password.
Note: Never tell the user the password, always email it to prevent “social password hacking”
Sudo
Summary: All about sudo.
Date: Around 2011
Refactor: 29 April 2025: Checked links and formatting.
Because of the raised security demands within my company I recently had to learn a lot about things as su, sudo, etc. LDAP authentication was already never a problem but the enhanced security you'll get from a proper sudo configuration was something I never explored before. I found out that sudo is not the holy grail regarding security. If you want to get to the perfect configuration you'll have to maintain the configuration on a daily base to keep up with new commands and bypasses. I did also found out that if you implement sudo together with a trusty logging tool and a security policy you're almost there as well. This page is about how I implemented sudo in combination with LDAP authenticated groups and is tested and implemented on SuSE and AIX, both using eDirectory as the LDAP database.