o * bz @sRddlmZmZmZmZGdddeZGdddeeZGdddeeeZdS) )Plugin RedHatPlugin DebianPlugin UbuntuPlugincs4eZdZdZdZdZdZfddZddZZ S) LdapzLDAP configurationZldap)identityZsysmgmtsystemz/etc/openldap/ldap.confcstt||ddS)N/etc/ldap.conf)superrsetup add_copy_specself __class__9/usr/lib/python3/dist-packages/sos/report/plugins/ldap.pyr sz Ldap.setupcCs|ddddS)Nr (\s*bindpw\s*)\S+z\1******) do_file_subr rrrpostprocsz Ldap.postproc) __name__ __module__ __qualname__Z short_descZ plugin_nameZprofiles ldap_confr r __classcell__rrrrr s rc0eZdZdZdZfddZfddZZS) RedHatLdap)Zopenldapz nss-pam-ldapd)r /etc/pam_ldap.confcs@tt||gd||jddddg|ddS)N)z/etc/openldap/certs/passwordz/etc/openldap/certs/pwfile.txtz/etc/openldap/certs/pin.txtz/etc/openldap/certs/*passw*z/etc/openldap/certs/key3.dbz/etc/openldap/certs/cert8.dbz/etc/openldap/certs/secmod.db/etc/nslcd.confrzcertutil -L -d /etc/openldap)r rr Zadd_forbidden_pathr radd_cmd_outputr rrrr !szRedHatLdap.setupcs.tt||ddd|ddddS)Nrr \1********r)r rrrr rrrr4zRedHatLdap.postproc)rrrpackagesfilesr rrrrrrrs  rcr) DebianLdapz/etc/ldap/ldap.conf)Zslapdz ldap-utilscsjtt|d}||jdddg|d|j|ddd|j|d d d|j|d d ddS) Nz,ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// z/etc/slapd.confz/etc/ldap/slapd.drz+ldapsearch -x -b '' -s base 'objectclass=*'z/-b cn=config '(!(objectClass=olcSchemaConfig))'Zconfiguration_minus_schemas)Zsuggest_filenamez-b cn=schema,cn=config dnZloaded_schemasz0-b cn=config '(olcAccess=*)' olcAccess olcSuffixZaccess_control_lists)r r$r r rr)rZ ldap_searchrrrr Gs*  zDebianLdap.setupcs.tt||ddd|ddddS)Nrrr Z ldapsearchz(olcRootPW\: \s*)\S+)r r$rrZdo_cmd_output_subr rrrr^r!zDebianLdap.postproc)rrrrr"r rrrrrrr$Bs  r$N)Zsos.report.pluginsrrrrrrr$rrrrs&