Apache HTTP Server 2.2.21 Released
Today Apache 2.2.21 got released!
For further information just have a look at on the httpd-announce list.
* SECURITY: CVE-2011-3348 (cve.mitre.org) mod_proxy_ajp when combined with mod_proxy_balancer: Prevents unrecognized HTTP methods from marking ajp: balancer members in an error state, avoiding denial of service. * SECURITY: CVE-2011-3192 (cve.mitre.org) core: Further fixes to the handling of byte-range requests to use less memory, to avoid denial of service. This patch includes fixes to the patch introduced in release 2.2.20 for protocol compliance, as well as the MaxRanges directive.
For further information just have a look at on the httpd-announce list.
Mailman Auto-Subscription of LDAP Users
This is a quick and dirty way on how to keep all your ldap users in sync with a specific mailman list. The sync_members script is part of the mailman package and ensures that also non-existing users will be purged. Before you start make sure that you have the ldap-utils installed.
The rest should be pretty self-explanatory, but if you got any questions so just let me know ;)
#!/bin/bash LISTNAME="system"; TEMPFILE=$(mktemp "/tmp/$(basename $0)XXXXXX"); /usr/bin/ldapsearch -Z -x -P 3 -LLL \ -H ldap://ldapmaster.domain.tld \ -w 'ultrasecrectpassword' \ -D "uid=binduser,dc=company,dc=de" \ -s one -b "dc=users,dc=company,dc=de" \ '(&(VirtualMailDrop=*)(VirtualMailboxForwardActive=FALSE))' \ grep '^VirtualMailDrop:' | awk '{ print $2 }' \ > ${TEMPFILE}; /usr/bin/sync_members \ --notifyadmin=yes \ --file ${TEMPFILE} \ ${LISTNAME} >/dev/null 2>&1; rm ${TEMPFILE};
You'd also have to adapt the filter expression to reflect your directory schemes and desired attributes. Later you might want to use cron to frequently sync your user-base.
