freeipa

mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-28 18:01:23 -06:00

Go to file

Tomas Babej f954f2d1b9 Limit pwpolicy maxlife to 20000 days Since krbMaxPwdLife attribute is represented as number of seconds, setting maxlife to high values such as 999 999 days (~2739 years) would result to overflow when parsing this attribute in kdb plugin, and hence default maxlife of 90 days would be applied. Limit the maximum value of maxlife that can be set through the framework to 20 000 days (~ 54 years). https://fedorahosted.org/freeipa/ticket/3817		2013-08-05 17:50:31 +02:00
.tx	Update translations	2013-08-02 16:54:25 +02:00
checks	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
contrib	Set master_kdc and dns_lookup_kdc to true	2012-09-19 20:47:12 -04:00
daemons	Remove unused variable	2013-07-25 13:21:30 +02:00
doc	Add the version option to all Commands	2013-02-21 16:26:09 +01:00
init	Avoid exporting KRB5_KTNAME in dirsrv env	2013-05-24 14:36:43 +02:00
install	Update translations	2013-08-02 16:54:25 +02:00
ipa-client	Change shebang to absolute path in ipa-client-automount	2013-07-25 15:27:37 +02:00
ipalib	Limit pwpolicy maxlife to 20000 days	2013-08-05 17:50:31 +02:00
ipapython	Skip referrals when converting LDAP result to LDAPEntry	2013-07-26 13:38:37 +02:00
ipaserver	Print newline after receiving EOF in installutils.read_password.	2013-07-24 10:00:03 +02:00
ipatests	Add the new no_member option to CLI tests	2013-07-29 10:03:21 +02:00
util	ipa-kdb: read SID blacklist from LDAP	2013-02-12 10:37:47 +01:00
.bzrignore	Added top-level tests/ package that will contain all unit tests	2008-10-07 20:36:44 -06:00
.gitignore	Fix location of service.crt in .gitignore	2013-06-18 16:55:29 +02:00
API.txt	Limit pwpolicy maxlife to 20000 days	2013-08-05 17:50:31 +02:00
autogen.sh	build tweaks - use automake's foreign mode, avoid creating empty files to satisfy gnu mode - run autoreconf -f to ensure that everything matches	2010-11-29 11:39:55 -05:00
BUILD.txt	Remove obsolete self-sign references from man pages, docstrings, comments	2013-04-15 16:56:06 -04:00
Contributors.txt	Add Nathaniel McCallum to Contributors.txt	2013-05-02 15:19:40 -04:00
COPYING	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
freeipa.spec.in	Free NSS objects in --external-ca scenario	2013-07-26 12:51:10 +02:00
ipa	Execute /usr/bin/python directly instead of /usr/bin/env python	2011-01-14 16:27:48 -05:00
ipa.1	Fix various typos.	2012-09-18 08:45:28 +02:00
lite-server.py	Tweak the session auth to reflect developer consensus.	2012-02-27 05:54:29 -05:00
make-doc	Make an ipa-tests package	2013-06-17 19:22:50 +02:00
make-lint	Provide ipa-advise tool	2013-07-17 13:49:59 +02:00
make-test	Make sure appropriate exit status is returned in make-test	2013-02-25 13:32:34 +01:00
make-testcert	Make an ipa-tests package	2013-06-17 19:22:50 +02:00
makeapi	Add client capabilities, enable messages	2013-02-21 16:26:09 +01:00
Makefile	Make an ipa-tests package	2013-06-17 19:22:50 +02:00
MANIFEST.in	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
README	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
setup-client.py	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
setup.py	Provide ipa-advise tool	2013-07-17 13:49:59 +02:00
TODO	Parse comma-separated lists of values in all parameter types. This can be enabled for a specific parameter by setting the "csv" option to True.	2011-11-30 17:08:35 +01:00
VERSION	Limit pwpolicy maxlife to 20000 days	2013-08-05 17:50:31 +02:00
version.m4.in	Mass tree reorganization for IPAv2. To view previous history of files use:	2009-02-03 15:27:14 -05:00

README

                               IPA Server

  What is it?
  -----------

  For efficiency, compliance and risk mitigation, organizations need to
  centrally manage and correlate vital security information including:

    * Identity (machine, user, virtual machines, groups, authentication
      credentials)
    * Policy (configuration settings, access control information)
    * Audit (events, logs, analysis thereof) 

  Since these are not new problems. there exist many approaches and
  products focused on addressing them. However, these tend to have the
  following weaknesses:

    * Focus on solving identity management across the enterprise has meant
      less focus on policy and audit.
    * Vendor focus on Web identity management problems has meant less well
      developed solutions for central management of the Linux and Unix
      world's vital security info. Organizations are forced to maintain
      a hodgepodge of internal and proprietary solutions at high TCO.
    * Proprietary security products don't easily provide access to the
      vital security information they collect or manage. This makes it
      difficult to synchronize and analyze effectively. 

  The Latest Version
  ------------------

  Details of the latest version can be found on the IPA server project
  page under <http://www.freeipa.org/>.

  Documentation
  -------------

  The most up-to-date documentation can be found at
  <http://freeipa.org/page/Documentation/>.

  Quick Start
  -----------

  To get started quickly, start here:
  <https://fedorahosted.org/freeipa/wiki/QuickStartGuide>

  Licensing
  ---------

  Please see the file called COPYING.

  Contacts
  --------

     * If you want to be informed about new code releases, bug fixes,
       security fixes, general news and information about the IPA server
       subscribe to the freeipa-announce mailing list at
       <https://www.redhat.com/mailman/listinfo/freeipa-interest/>.

     * If you have a bug report please submit it at:
       <https://bugzilla.redhat.com>

     * If you want to participate in actively developing IPA please
       subscribe to the freeipa-devel mailing list at
       <https://www.redhat.com/mailman/listinfo/freeipa-devel/> or join
       us in IRC at irc://irc.freenode.net/freeipa