Paranoid user management based on OpenLDAP and some more
This talk will present a concept and real-world implementation of a user and authorization management system purely based on OpenLDAP e.g. used to control administrative access to Unixoid servers and web apps/services. The main goal of Æ-DIR (besides challenging Unicode handling in various software with its name) is to follow the need-to-know principle as much as possible. The visibility of users, groups, sudoers, etc. is limited mainly by OpenLDAP’s set-based ACLs. All systems and services, no exception(!), have to individually authenticate to be authorized to access Æ-DIR.
Anfang: 12:15 Uhr