Suggest using TLS when connecting to LDAP directly

author Paul Wise <pabs@debian.org>

Mon, 15 Aug 2016 07:58:58 +0000 (15:58 +0800)

committer Paul Wise <pabs@debian.org>

Sun, 9 Apr 2017 02:35:59 +0000 (10:35 +0800)
author Paul Wise <pabs@debian.org>
Mon, 15 Aug 2016 07:58:58 +0000 (15:58 +0800)
committer Paul Wise <pabs@debian.org>
Sun, 9 Apr 2017 02:35:59 +0000 (10:35 +0800)
diff --git a/html/doc-direct.wml b/html/doc-direct.wml

index da7912a..2a08180 100644 (file)
--- a/html/doc-direct.wml
+++ b/html/doc-direct.wml
@@ -17,12 +17,12 @@ The LDAP utilities package (<a href="https://packages.debian.org/ldap-utils">\
  ldap-utils</a>) provides an utility called ldapsearch that can be used
  to execute direct queries to the database. This is done by supplying
  the following arguments to ldapsearch: <strong>-x -H
-ldap://db.debian.org -b dc=debian,dc=org</strong>. Alternatively, the
+ldaps://db.debian.org -b dc=debian,dc=org</strong>. Alternatively, the
  <strong>-H</strong> and <strong>-b</strong> options can be put in
  one's ~/.ldaprc, in the following form:
  </p><pre>
  [ dbharris@people: ~/ ]$ cat ~/.ldaprc
-HOST db.debian.org
+URI ldaps://db.debian.org
  BASE dc=debian,dc=org
  </pre>
  
@@ -47,7 +47,7 @@ return. If you only specify the query, but don't provide any attributes to
  return, all readable attributes are returned. While the example was quite
  simple, complex queries can be performed as well:
  </p><pre>
-[ dbharris@people: ~/ ]$ ldapsearch -x -H ldap://db.debian.org -b dc=debian,dc=org '(&amp;(!(loginshell=/bin/bash))(uid=*))' loginshell
+[ dbharris@people: ~/ ]$ ldapsearch -x -H ldaps://db.debian.org -b dc=debian,dc=org '(&amp;(!(loginshell=/bin/bash))(uid=*))' loginshell
  </pre>
  
  <p>
author	Paul Wise <pabs@debian.org>
	Mon, 15 Aug 2016 07:58:58 +0000 (15:58 +0800)
committer	Paul Wise <pabs@debian.org>
	Sun, 9 Apr 2017 02:35:59 +0000 (10:35 +0800)