How to hide your password while configuring yum - yum

I am trying to configure proxy in yum.conf, specifying proxy_password. I would like to hide my proxy_password. I understand that I can use read -es, but I don't want to put it in any variable also.
Please recommend.
Thanks,
Ajay.

You could use the include facility to put the proxy_password setting in a file with protected permissions.

Related

Is there a way to configure a gitlab project to gitlab.com to ONLY use SSH and no HTTPS?

For example I'd like to see this as a feature if it does not already exist.
Hence my question.
This should be tracked with gitlab-ce issue 18601, but for a private GitLab server, not necessarily gitlab.com.
See commit cfd5870
When you choose to allow only one of the protocols, a couple of things will happen:
The project page will only show the allowed protocol's URL, with no option to
change it.
A tooltip will be shown when you hover over the URL's protocol, if an action
on the user's part is required, e.g. adding an SSH key, or setting a password.

What do i need for "idsldapmodify, ldapmodify,etc"?

i want to use the ldap interface to modify some attributes at TDS.
I found a tutorial Overriding password policy and unlocking accounts
I created a .Ldif file and tried to load the file via command-line in Windows 7 (!). But i think i am missing the necessary ldap tools.
"idsldapmodify" is not recognized as an internal or external command, operable program or batch file.
What do i exactly need to run such parameters "idsldapmodify –?"
Best regards!
That was the problem, "ldapmodify" didn't work.
But now i got it. I have downloaded "OpenLDAP 2.4.34" and now i can use "ldapmodify". Thank your very much!

how to change OpenLDAP configuration ( slapd.conf ) programmatically

I need to make some configuration changes to slapd.conf. Changes are related to enabling SSL, enabling synch-replication etc.
For example, i need to add following block of configuration in slapd.conf to enable synch-replication over SSL :
TLSCACertificateFile /etc/openldap/cacerts/cacert.pem
TLSCertificateFile /etc/openldap/certs/servercrt.pem
TLSCertificateKeyFile /etc/openldap/certs/serverkey.pem
TLSVerifyClient never
Right now, I am trying to do this with shell script. Script will edit text in slapd.conf using sed, awk commands and some logic to place the text correctly in slapd.conf.
I don't think this is the best way to make configuration changes in slapd.conf.
Is there an API/commands for shell to do the same.
Please also suggest any java api for the same ?
I am using OpenLDAP.
Thanks in Advance.
If you used online configuration with the -F slapd.d option you could do it via an LDAP API.

How to use "htaccess" on synology system for website access control?

I am trying to set up the access control for my personal website on synology NAS. Right now I am using DS212J. I found the following article teaching how to use "htaccess" on apache to achieve that.
http://www.synology.com/support/faq_show.php?lang=enu&q_id=347
But I encountered 2 problem:
1) I don't have the command "htpasswd" after ssh to my DS212J.
2) After I manually create those files, I got the username and password prompting up on the website. However, the password in "admin.pw" and "normal.pw" doesn't work when I type in. I am not sure whether it is because I didn't use command "htpasswd".
What am I missing here?
Thanks.
The htpasswd executable is at /usr/syno/apache/bin/htpasswd. As that directory is not on the PATH, you have to explicitly use the whole path to use it:
Apache doesn't keep passwords in plain text, it uses a hash of them so that even if someone gets access to the password file they won't be able to log in. That's why you must use htpasswd to create the file.
For anyone who comes across this, I couldn't get that synology support tutorial to work either. I am running DSM 5.1-5022 Update 4 on my own domain with ssl. Here's how it got it working:
Follow the steps in the following wiki: Synology Wiki
In the control panel, go to "Web Services" and disable SPDY for secure connections. (Gleaned from this article.)
Good luck.

AD/LDAP authentication for FitNesse

We are going to put FitNesse on a server and wants to have a AD/LDAP authentication solution for this.
Does anyone have experience with good and easy to set up solutions for this?
Thanks in advance. Magnus
One straightforward method would be to download the standard edition of the UnboundID LDAP SDK and get a copy of the jsse.jar file and install both jar files in the fitness lib directory. Create a class in the fitness.authentication package that extends the fitness.authentication.Authenticator class and overrides the isAuthenticated() method. Specify the required properties such as hostname, port, simple or SASL bind, whether to use SSL or StartTLS, base object, search scope, and so forth.
The jsse.jar will provide the necessary SSL classes so that SSL and StartTLS can be implemented as required.
see also
LDAP: Programming practices
It is possible, but it would require either finding or creating a plugin to do it.
I found the following, but I have never tried it:
https://github.com/timander/fitnesse-ldap-authenticator.
Also out there, but older is: https://github.com/dleonard0/fitnesse
You can start there, but you might have to get your hands dirty. Unfortunately, I'm just not that familiar with that part of the code.
See here: http://fitnesse.org/FitNesse.UserGuide.AdministeringFitNesse.SecurityDescription.SpnegoAuthentication
I need to give many more characters to make stakeoverflow happy.