steffen: server/kolab/kolab kolab.schema, 1.14, 1.15 kolab_bootstrap, 1.45, 1.46
cvs at intevation.de
cvs at intevation.de
Tue Jul 13 03:22:16 CEST 2004
Author: steffen
Update of /kolabrepository/server/kolab/kolab
In directory doto:/tmp/cvs-serv16088/kolab
Modified Files:
kolab.schema kolab_bootstrap
Log Message:
password support for resources/groups
Index: kolab.schema
===================================================================
RCS file: /kolabrepository/server/kolab/kolab/kolab.schema,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -d -r1.14 -r1.15
--- kolab.schema 21 Jun 2004 01:46:39 -0000 1.14
+++ kolab.schema 13 Jul 2004 01:22:13 -0000 1.15
@@ -578,6 +578,11 @@
SUBSTR caseIgnoreIA5SubstringsMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
+attributetype ( 1.3.6.1.4.1.19419.2.1.4
+ NAME 'encryptedPassword'
+ DESC 'base64 encoded public key encrypted Password'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
+
# global attributes
attributetype ( 1.3.6.1.4.1.19414.2.1.5
@@ -937,6 +942,7 @@
MAY (
homeServer $
unrestrictedMailSize $
- delegate
+ delegate $
+ encryptedPassword
)
)
Index: kolab_bootstrap
===================================================================
RCS file: /kolabrepository/server/kolab/kolab/kolab_bootstrap,v
retrieving revision 1.45
retrieving revision 1.46
diff -u -d -r1.45 -r1.46
--- kolab_bootstrap 12 Jul 2004 21:05:33 -0000 1.45
+++ kolab_bootstrap 13 Jul 2004 01:22:13 -0000 1.46
@@ -466,6 +466,26 @@
system("killall -9 slapd >/dev/null 2>&1");
}
}
+
+ # Create key-pair for resource password encryption
+ # if they dont exist already
+ my $pubreskey = "$kolab_prefix/etc/kolab/res_pub.pem";
+ my $privreskey = "$kolab_prefix/etc/kolab/res_priv.pem";
+ if( ! -e $pubreskey || ! -e $privreskey ) {
+ my $oldmask = umask 0077;
+ #print "Creating DSA keypair for resource password encryption\n";
+ #system("/kolab/bin/openssl dsaparam 1024 -out dsa-params");
+ #system("/kolab/bin/openssl gendsa -out $privreskey dsa-params");
+ #system("/kolab/bin/openssl dsa -in $privreskey -pubout -out $pubreskey");
+ print "Creating RSA keypair for resource password encryption\n";
+ system("/kolab/bin/openssl genrsa -out $privreskey 1024");
+ system("/kolab/bin/openssl rsa -in $privreskey -pubout -out $pubreskey");
+ system("chown kolab.kolab-n $pubreskey $privreskey");
+ chmod 0660, $privreskey, $pubreskey;
+ #unlink( "dsa-params" );
+ umask $oldmask;
+ }
+
print <<'EOS';
Kolab can create an manage a certificate authority that can be
used to create SSL certificates for use within the Kolab environment.
More information about the commits
mailing list