我正在尝试重置用户的密码过期(真正设置了这样做的半自动过程),这让我哭了:
服务器是openldap slapd:2.4.28-1.1ubuntu4.2
$ ldapsearch -x -b dc=internal,dc=brazzers,dc=com uid=jenna sambaPwdLastSet sambaPwdMustChange # jenna, People, internal.brazzers.com dn: uid=jenna,ou=People,dc=internal,dc=brazzers,dc=com sambaPwdLastSet: 1395420463 sambaPwdMustChange: 1398098896 testing输出:
$ cat <<EOF dn: uid=jenna,ou=People,dc=internal,dc=brazzers,dc=com changetype: modify replace: sambaPwdLastSet sambaPwdLastSet: $(date -u +%s) - replace: sambaPwdMustChange sambaPwdMustChange: $(date -u -d "+1 month" +%s) - EOF
结果是:
dn: uid=jenna,ou=People,dc=internal,dc=brazzers,dc=com changetype: modify replace: sambaPwdLastSet sambaPwdLastSet: 1395421165 - replace: sambaPwdMustChange sambaPwdMustChange: 1398099565 -
好的,我们来做这个:
$ cat <<EOF | ldapmodify -D cn=admin,dc=internal,dc=brazzers,dc=com -W dn: uid=jenna,ou=People,dc=internal,dc=brazzers,dc=com changetype: modify replace: sambaPwdLastSet sambaPwdLastSet: $(date -u +%s) - replace: sambaPwdMustChange sambaPwdMustChange: $(date -u -d "+1 month" +%s) - EOF Enter LDAP Password: ldapmodify: wrong attributeType at line 4, entry "uid=jenna,ou=People,dc=internal,dc=brazzers,dc=com"
什么? 怎么会是错的?
哎呀! 尾随空间的另一个攻击!
我有一个尾随空间replace: sambaPwdLastSet就像:
当使用ldapadd时“错误的属性types”