#use wml::db.d.o title="Direct LDAP Access"
+#use wml::vbar
<dsatoc/>
<p>Since the
-<a href="http://lists.debian.org/debian-announce/debian-announce-2003/msg00001.html">compromise</a>,
+<a href="https://lists.debian.org/debian-announce/debian-announce-2003/msg00001.html">compromise</a>,
the information available to non-developers via the LDAP interface has been
limited a great deal. However, as always, the full database is accessible from
any .debian.org machine. If you wish relatively unfettered access to the LDAP
-database, connect to it from a .debian.org machine, such as ravel.debian.org
+database, connect to it from a .debian.org machine, such as people.debian.org
(which is recommended for general shell usage anyhow).
</p>
<p>
-The LDAP utilities package (<a href="http://packages.debian.org/ldap-utils">\
+The LDAP utilities package (<a href="https://packages.debian.org/ldap-utils">\
ldap-utils</a>) provides an utility called ldapsearch that can be used
to execute direct queries to the database. This is done by supplying
the following arguments to ldapsearch: <strong>-x -H
-ldap://db.debian.org -b dc=debian,dc=org</strong>. Alternatively, the
+ldaps://db.debian.org -b dc=debian,dc=org</strong>. Alternatively, the
<strong>-H</strong> and <strong>-b</strong> options can be put in
one's ~/.ldaprc, in the following form:
</p><pre>
-[ dbharris@ravel: ~/ ]$ cat ~/.ldaprc
-HOST db.debian.org
+[ dbharris@people: ~/ ]$ cat ~/.ldaprc
+URI ldaps://db.debian.org
BASE dc=debian,dc=org
</pre>
<strong>-x</strong>. With these parameters specified, we're ready to begin
searching. Here's an example:
</p><pre>
-[ dbharris@ravel: ~/ ]$ ldapsearch -x uid=dbharris keyfingerprint
+[ dbharris@people: ~/ ]$ ldapsearch -x uid=dbharris keyfingerprint
<snip>
# dbharris, users, debian, org
dn: uid=dbharris,ou=users,dc=debian,dc=org
return, all readable attributes are returned. While the example was quite
simple, complex queries can be performed as well:
</p><pre>
-[ dbharris@ravel: ~/ ]$ ldapsearch -x -H ldap://db.debian.org -b dc=debian,dc=org '(&(!(loginshell=/bin/bash))(uid=*))' loginshell
+[ dbharris@people: ~/ ]$ ldapsearch -x -H ldaps://db.debian.org -b dc=debian,dc=org '(&(!(loginshell=/bin/bash))(uid=*))' loginshell
</pre>
<p>
interesting queries are:</p>
<ul>
<li>Count the number of developers
-<tt>(&(keyfingerprint=*)(gidnumber=800))</tt></li>
+<tt>(&(keyfingerprint=*)(supplementaryGid=Debian))</tt></li>
<li>Show people in a certain group <tt>gidmembership=adm</tt></li>
<li>People named james <tt>cn=james</tt></li>
<li>Someone whos last name phonetically sounds like 'Ackerma'