|
On 07/06/2015 05:18 PM, William wrote:
I will clean up and publish the usl tool set in the future to help other people test their own LDAP secuity controls.Nice! This would be a good addition to our admin/management tools, if you would like to submit it. Please open a ticket and attach the code to it (or just point us to your github or wherever you are hosting this). Might I suggest the name "audit_acis"?It needs a lot of work before it can be added: At the moment you have to hand define your acis in the system to actually test. My future work will be to make this read the set of acis and auto -generate tests from these. This will be able to: * Automatically find potentially conflicting acis * List all attributes that an aci provides access to on target objects * Make it a lot easier to "drop in" and use. Once I've done this, I'll certainly make it available. At the same time, I have some other python tools to submit also. Looking forward to them. Please feel free to use the 389-devel list to discuss technical development issues. Glad that you liked it! |
-- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
