Logbook: debian504

Home     Configuration     Statistics

Summary of runs of SCC

Date Time Runtime Result Count Remark
2010-05-11 11.32.53 48 identical    
2010-05-11 10.31.01 48 different 1  
2010-05-11 10.15.31 48 different 260  
2010-05-11 09.40.53 47 (re)start   install of SCC release 1.12.1
2010-05-11 09.40.02 48 different 2  
2010-05-11 09.23.30 48 different 32  
2010-05-11 09.11.40 50 identical    
2010-05-11 09.03.44 47 different 889 install openldap
2010-05-11 08.59.30 49 different 133 preparations
2010-05-11 01.38.06 47 different 2  
2010-05-11 01.36.10 48 (re)start   install of SCC release 1.11.20

Top    Statistics

Category Value
runs total 11
runs with changes 7
runs perc. changes 63
change count min. 1
change count max. 889
change count average 188
runtime min. 47
runtime max. 50
runtime average 48

Top    Back    Differences at: 2010-05-11 10.31.01

remark                        : 
runtime                       : 48
count                         : 1
previous date                 : 2010-05-11
previous time                 : 10.15.31

network - ports

new:	kerberos-adm 749

Top    Back    Differences at: 2010-05-11 10.15.31

remark                        : 
runtime                       : 48
count                         : 260
previous date                 : 2010-05-11
previous time                 : 09.40.53

boot - defaults - /etc/default/slapd

new:	SLAPD_SERVICES="ldap:/// ldapi:///"

boot - run level - /etc/rc2.d

old:	S18krb5-admin-server -> ../init.d/krb5-admin-server
old:	S18krb5-kdc -> ../init.d/krb5-kdc
new:	S20krb5-admin-server -> ../init.d/krb5-admin-server
new:	S20krb5-kdc -> ../init.d/krb5-kdc

software - installed Debian packages

old:	iF  scc                                                                   1.12-1                                                                System Configuration Collector
new:	ii  scc                                                                   1.12-1                                                                System Configuration Collector

software - ldap - /etc/ldap/slapd.conf

new:	include         /etc/ldap/schema/kerberos.schema
old:	loglevel        none
new:	index           uid eq
new:	index           krbPrincipalName eq,pres,sub
new:	        by * none
new:	access to dn.subtree="ou=krb5,dc=local,dc=nl"
new:	        by dn="cn=admin,dc=local,dc=nl" write
new:		by dn="cn=adm-srv,ou=krb5,dc=local,dc=nl" write
new:		by dn="cn=kdc-srv,ou=krb5,dc=local,dc=nl" read
new:		by * none
new:	access to attrs=loginShell
new:		by dn="cn=admin,dc=local,dc=nl" write
old:	access to dn.base="" by * read
new:	access to dn.base=""
new:		by * read
old:	        by dn="cn=admin,dc=local,dc=nl" write
old:	        by * read
new:		by dn="cn=admin,dc=local,dc=nl" write
new:		by users read
new:		by * none

software - ldap - /etc/ldap/schema/kerberos.schema

new:	attributetype ( 2.16.840.1.113719.1.301.4.1.1
new:	                NAME 'krbPrincipalName'
new:	                EQUALITY caseExactIA5Match
new:			SUBSTR caseExactSubstringsMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
new:	attributetype ( 2.16.840.1.113719.1.301.4.3.1
new:	                NAME 'krbPrincipalType'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.5.1
new:	                NAME 'krbUPEnabled'
new:	                DESC 'Boolean'
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.6.1
new:	                NAME 'krbPrincipalExpiration'
new:	                EQUALITY generalizedTimeMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.8.1
new:	                NAME 'krbTicketFlags'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.9.1
new:	                NAME 'krbMaxTicketLife'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.10.1
new:	                NAME 'krbMaxRenewableAge'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.14.1
new:	                NAME 'krbRealmReferences'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.15.1
new:	                NAME 'krbLdapServers'
new:	                EQUALITY caseIgnoreMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.15)
new:	attributetype ( 2.16.840.1.113719.1.301.4.17.1
new:	                NAME 'krbKdcServers'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.18.1
new:	                NAME 'krbPwdServers'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.24.1
new:	                NAME 'krbHostServer'
new:	                EQUALITY caseExactIA5Match
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
new:	attributetype ( 2.16.840.1.113719.1.301.4.25.1
new:	                NAME 'krbSearchScope'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.26.1
new:	                NAME 'krbPrincipalReferences'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.28.1
new:	                NAME 'krbPrincNamingAttr'
new:	                EQUALITY caseIgnoreMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.29.1
new:	                NAME 'krbAdmServers'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.30.1
new:	                NAME 'krbMaxPwdLife'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.31.1
new:	                NAME 'krbMinPwdLife'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.32.1
new:	                NAME 'krbPwdMinDiffChars'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.33.1
new:	                NAME 'krbPwdMinLength'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.34.1
new:	                NAME 'krbPwdHistoryLength'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.36.1
new:	                NAME 'krbPwdPolicyReference'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.37.1
new:	                NAME 'krbPasswordExpiration'
new:	                EQUALITY generalizedTimeMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.39.1
new:	                NAME 'krbPrincipalKey'
new:	                EQUALITY octetStringMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.40)
new:	attributetype ( 2.16.840.1.113719.1.301.4.40.1
new:	                NAME 'krbTicketPolicyReference'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.41.1
new:	                NAME 'krbSubTrees'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.42.1
new:	                NAME 'krbDefaultEncSaltTypes'
new:	                EQUALITY caseIgnoreMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.15)
new:	attributetype ( 2.16.840.1.113719.1.301.4.43.1
new:	                NAME 'krbSupportedEncSaltTypes'
new:	                EQUALITY caseIgnoreMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.15)
new:	attributetype ( 2.16.840.1.113719.1.301.4.44.1
new:	                NAME 'krbPwdHistory'
new:	                EQUALITY octetStringMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.40)
new:	attributetype ( 2.16.840.1.113719.1.301.4.45.1
new:	                NAME 'krbLastPwdChange'
new:	                EQUALITY generalizedTimeMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.46.1
new:	                NAME 'krbMKey'
new:	                EQUALITY octetStringMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.40)
new:	attributetype ( 2.16.840.1.113719.1.301.4.47.1
new:	                NAME 'krbPrincipalAliases'
new:	                EQUALITY caseExactIA5Match
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
new:	attributetype ( 2.16.840.1.113719.1.301.4.48.1
new:	                NAME 'krbLastSuccessfulAuth'
new:	                EQUALITY generalizedTimeMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.49.1
new:	                NAME 'krbLastFailedAuth'
new:	                EQUALITY generalizedTimeMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.50.1
new:	                NAME 'krbLoginFailedCount'
new:	                EQUALITY integerMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
new:	                SINGLE-VALUE)
new:	attributetype ( 2.16.840.1.113719.1.301.4.51.1
new:	                NAME 'krbExtraData'
new:	                EQUALITY octetStringMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.40)
new:	attributetype ( 2.16.840.1.113719.1.301.4.52.1
new:	                NAME 'krbObjectReferences'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	attributetype ( 2.16.840.1.113719.1.301.4.53.1
new:	                NAME 'krbPrincContainerRef'
new:	                EQUALITY distinguishedNameMatch
new:	                SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
new:	objectclass ( 2.16.840.1.113719.1.301.6.1.1
new:	                NAME 'krbContainer'
new:	                SUP top
new:			STRUCTURAL
new:	                MUST ( cn ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.2.1
new:	                NAME 'krbRealmContainer'
new:	                SUP top
new:			STRUCTURAL
new:	                MUST ( cn )
new:	                MAY ( krbMKey $ krbUPEnabled $ krbSubTrees $ krbSearchScope $ krbLdapServers $ krbSupportedEncSaltTypes $ krbDefaultEncSaltTypes $ krbTicketPolicyReference $ krbKdcServers $ krbPwdServers $ krbAdmServers $ krbPrincNamingAttr $ krbPwdPolicyReference $ krbPrincContainerRef ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.3.1
new:	                NAME 'krbService'
new:	                SUP top
new:	                ABSTRACT
new:	                MUST ( cn )
new:	                MAY ( krbHostServer $ krbRealmReferences ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.4.1
new:	                NAME 'krbKdcService'
new:	                SUP krbService
new:			STRUCTURAL )
new:	objectclass ( 2.16.840.1.113719.1.301.6.5.1
new:	                NAME 'krbPwdService'
new:	                SUP krbService
new:			STRUCTURAL )
new:	objectclass ( 2.16.840.1.113719.1.301.6.8.1
new:	                NAME 'krbPrincipalAux'
new:			SUP top
new:	                AUXILIARY
new:	                MAY ( krbPrincipalName $ krbUPEnabled $ krbPrincipalKey $ krbTicketPolicyReference $ krbPrincipalExpiration $ krbPasswordExpiration $ krbPwdPolicyReference $ krbPrincipalType $ krbPwdHistory $ krbLastPwdChange $ krbPrincipalAliases $ krbLastSuccessfulAuth $ krbLastFailedAuth $ krbLoginFailedCount $ krbExtraData ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.9.1
new:	                NAME 'krbPrincipal'
new:	                SUP top
new:	                MUST ( krbPrincipalName )
new:			MAY ( krbObjectReferences ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.11.1
new:	                NAME 'krbPrincRefAux'
new:	                SUP top
new:	                AUXILIARY
new:	                MAY krbPrincipalReferences )
new:	objectclass ( 2.16.840.1.113719.1.301.6.13.1
new:	                NAME 'krbAdmService'
new:	                SUP krbService
new:			STRUCTURAL )
new:	objectclass ( 2.16.840.1.113719.1.301.6.14.1
new:	                NAME 'krbPwdPolicy'
new:	                SUP top
new:	                MUST ( cn )
new:	                MAY ( krbMaxPwdLife $ krbMinPwdLife $ krbPwdMinDiffChars $ krbPwdMinLength $ krbPwdHistoryLength ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.16.1
new:	                NAME 'krbTicketPolicyAux'
new:	                SUP top
new:	                AUXILIARY
new:	                MAY ( krbTicketFlags $ krbMaxTicketLife $ krbMaxRenewableAge ) )
new:	objectclass ( 2.16.840.1.113719.1.301.6.17.1
new:	                NAME 'krbTicketPolicy'
new:	                SUP top
new:	                MUST ( cn ) )

system - security - Kerberos - /etc/krb5kdc/kadm5.acl

new:	*/admin *
new:	admin *

Top    Back    Differences at: 2010-05-11 09.40.02

remark                        : 
runtime                       : 48
count                         : 2
previous date                 : 2010-05-11
previous time                 : 09.23.30

software - installed Debian packages

old:	ii  scc                                                                   1.11-20                                                               System Configuration Collector
new:	iHR scc                                                                   1.11-20                                                               System Configuration Collector

Top    Back    Differences at: 2010-05-11 09.23.30

remark                        : 
runtime                       : 48
count                         : 32
previous date                 : 2010-05-11
previous time                 : 09.11.40

general

old:	hostid:007f0101
new:	hostid:a8c01db2

boot - defaults - /etc/default/krb5-admin-server

new:	RUN_KADMIND=true

boot - defaults - /etc/default/krb5-kdc

new:	KRB4_MODE=none
new:	RUN_KRB524D=true

boot - run level - /etc/rc0.d

new:	K18krb5-admin-server -> ../init.d/krb5-admin-server
new:	K18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc1.d

new:	K18krb5-admin-server -> ../init.d/krb5-admin-server
new:	K18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc2.d

new:	S18krb5-admin-server -> ../init.d/krb5-admin-server
new:	S18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc3.d

new:	S18krb5-admin-server -> ../init.d/krb5-admin-server
new:	S18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc4.d

new:	S18krb5-admin-server -> ../init.d/krb5-admin-server
new:	S18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc5.d

new:	S18krb5-admin-server -> ../init.d/krb5-admin-server
new:	S18krb5-kdc -> ../init.d/krb5-kdc

boot - run level - /etc/rc6.d

new:	K18krb5-admin-server -> ../init.d/krb5-admin-server
new:	K18krb5-kdc -> ../init.d/krb5-kdc

network - file - /etc/hosts

old:	127.0.1.1	debian504.local.nl	debian504
new:	127.0.1.1	debian504l.local.nl	debian504l
new:	192.168.178.29  debian504.local.nl debian504

software - installed Debian packages

new:	ii  krb5-admin-server                                                     1.6.dfsg.4~beta1-5lenny3                                              MIT Kerberos master server (kadmind)
new:	ii  krb5-config                                                           1.22                                                                  Configuration files for Kerberos Version 5
new:	ii  krb5-kdc                                                              1.6.dfsg.4~beta1-5lenny3                                              MIT Kerberos key server (KDC)
new:	ii  krb5-kdc-ldap                                                         1.6.dfsg.4~beta1-5lenny3                                              MIT Kerberos key server (KDC) LDAP plugin
new:	ii  krb5-user                                                             1.6.dfsg.4~beta1-5lenny3                                              Basic programs to authenticate using MIT Kerberos
new:	ii  libkadm55                                                             1.6.dfsg.4~beta1-5lenny3                                              MIT Kerberos administration runtime libraries

system - ld - ldconfig - /usr/lib

new:	libgssrpc.so.4 -> libgssrpc.so.4.0
new:	libkadm5clnt.so.5 -> libkadm5clnt.so.5.1
new:	libkadm5srv.so.5 -> libkadm5srv.so.5.1
new:	libkdb5.so.4 -> libkdb5.so.4.0

Top    Back    Differences at: 2010-05-11 09.03.44

remark                        : install openldap
runtime                       : 47
count                         : 889
previous date                 : 2010-05-11
previous time                 : 08.59.30

boot - defaults - /etc/default/slapd

new:	SLAPD_CONF=
new:	SLAPD_USER="openldap"
new:	SLAPD_GROUP="openldap"
new:	SLAPD_PIDFILE=
new:	SLAPD_SENTINEL_FILE=/etc/ldap/noslapd
new:	SLAPD_OPTIONS=""

boot - run level - /etc/rc0.d

new:	K80slapd -> ../init.d/slapd

boot - run level - /etc/rc1.d

new:	K80slapd -> ../init.d/slapd

boot - run level - /etc/rc2.d

new:	S19slapd -> ../init.d/slapd

boot - run level - /etc/rc3.d

new:	S19slapd -> ../init.d/slapd

boot - run level - /etc/rc4.d

new:	S19slapd -> ../init.d/slapd

boot - run level - /etc/rc5.d

new:	S19slapd -> ../init.d/slapd

boot - run level - /etc/rc6.d

new:	K80slapd -> ../init.d/slapd

network - ports

new:	ldap 389

software - installed Debian packages

new:	ii  ldap-utils                                                            2.4.11-1+lenny1                                                       OpenLDAP utilities
new:	ii  libdb4.2                                                              4.2.52+dfsg-5                                                         Berkeley v4.2 Database Libraries [runtime]
new:	ii  libltdl3                                                              1.5.26-4+lenny1                                                       A system independent dlopen wrapper for GNU libtool
new:	ii  libsasl2-modules                                                      2.1.22.dfsg1-23+lenny1                                                Cyrus SASL - pluggable authentication modules
new:	ii  libslp1                                                               1.2.1-7.5                                                             OpenSLP libraries
new:	ii  odbcinst1debian1                                                      2.2.11-16                                                             Support library and helper program for accessing odbc ini files
new:	ii  psmisc                                                                22.6-1                                                                Utilities that use the proc filesystem
new:	ii  slapd                                                                 2.4.11-1+lenny1                                                       OpenLDAP server (slapd)
new:	ii  unixodbc                                                              2.2.11-16                                                             ODBC tools libraries

software - ldap - /etc/ldap/slapd.conf

new:	include         /etc/ldap/schema/core.schema
new:	include         /etc/ldap/schema/cosine.schema
new:	include         /etc/ldap/schema/nis.schema
new:	include         /etc/ldap/schema/inetorgperson.schema
new:	pidfile         /var/run/slapd/slapd.pid
new:	argsfile        /var/run/slapd/slapd.args
new:	loglevel        none
new:	modulepath	/usr/lib/ldap
new:	moduleload	back_hdb
new:	sizelimit 500
new:	tool-threads 1
new:	backend		hdb
new:	database        hdb
new:	suffix          "dc=local,dc=nl"
new:	directory       "/var/lib/ldap"
new:	dbconfig set_cachesize 0 2097152 0
new:	dbconfig set_lk_max_objects 1500
new:	dbconfig set_lk_max_locks 1500
new:	dbconfig set_lk_max_lockers 1500
new:	index           objectClass eq
new:	lastmod         on
new:	checkpoint      512 30
new:	access to attrs=userPassword,shadowLastChange
new:	        by dn="cn=admin,dc=local,dc=nl" write
new:	        by anonymous auth
new:	        by self write
new:	        by * none
new:	access to dn.base="" by * read
new:	access to *
new:	        by dn="cn=admin,dc=local,dc=nl" write
new:	        by * read

software - ldap - /etc/ldap/schema/core.schema

new:	attributetype ( 2.5.4.2 NAME 'knowledgeInformation'
new:		DESC 'RFC2256: knowledge information'
new:		EQUALITY caseIgnoreMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )
new:	attributetype ( 2.5.4.4 NAME ( 'sn' 'surname' )
new:		DESC 'RFC2256: last (family) name(s) for which the entity is known by'
new:		SUP name )
new:	attributetype ( 2.5.4.5 NAME 'serialNumber'
new:		DESC 'RFC2256: serial number of the entity'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )
new:	attributetype ( 2.5.4.6 NAME ( 'c' 'countryName' )
new:		DESC 'RFC2256: ISO-3166 country 2-letter code'
new:		SUP name SINGLE-VALUE )
new:	attributetype ( 2.5.4.7 NAME ( 'l' 'localityName' )
new:		DESC 'RFC2256: locality which this object resides in'
new:		SUP name )
new:	attributetype ( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' )
new:		DESC 'RFC2256: state or province which this object resides in'
new:		SUP name )
new:	attributetype ( 2.5.4.9 NAME ( 'street' 'streetAddress' )
new:		DESC 'RFC2256: street address of this object'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
new:	attributetype ( 2.5.4.10 NAME ( 'o' 'organizationName' )
new:		DESC 'RFC2256: organization this object belongs to'
new:		SUP name )
new:	attributetype ( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' )
new:		DESC 'RFC2256: organizational unit this object belongs to'
new:		SUP name )
new:	attributetype ( 2.5.4.12 NAME 'title'
new:		DESC 'RFC2256: title associated with the entity'
new:		SUP name )
new:	attributetype ( 2.5.4.14 NAME 'searchGuide'
new:		DESC 'RFC2256: search guide, deprecated by enhancedSearchGuide'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )
new:	attributetype ( 2.5.4.15 NAME 'businessCategory'
new:		DESC 'RFC2256: business category'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
new:	attributetype ( 2.5.4.16 NAME 'postalAddress'
new:		DESC 'RFC2256: postal address'
new:		EQUALITY caseIgnoreListMatch
new:		SUBSTR caseIgnoreListSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )
new:	attributetype ( 2.5.4.17 NAME 'postalCode'
new:		DESC 'RFC2256: postal code'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{40} )
new:	attributetype ( 2.5.4.18 NAME 'postOfficeBox'
new:		DESC 'RFC2256: Post Office Box'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{40} )
new:	attributetype ( 2.5.4.19 NAME 'physicalDeliveryOfficeName'
new:		DESC 'RFC2256: Physical Delivery Office Name'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
new:	attributetype ( 2.5.4.20 NAME 'telephoneNumber'
new:		DESC 'RFC2256: Telephone Number'
new:		EQUALITY telephoneNumberMatch
new:		SUBSTR telephoneNumberSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )
new:	attributetype ( 2.5.4.21 NAME 'telexNumber'
new:		DESC 'RFC2256: Telex Number'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )
new:	attributetype ( 2.5.4.22 NAME 'teletexTerminalIdentifier'
new:		DESC 'RFC2256: Teletex Terminal Identifier'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )
new:	attributetype ( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' )
new:		DESC 'RFC2256: Facsimile (Fax) Telephone Number'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.22 )
new:	attributetype ( 2.5.4.24 NAME 'x121Address'
new:		DESC 'RFC2256: X.121 Address'
new:		EQUALITY numericStringMatch
new:		SUBSTR numericStringSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{15} )
new:	attributetype ( 2.5.4.25 NAME 'internationaliSDNNumber'
new:		DESC 'RFC2256: international ISDN number'
new:		EQUALITY numericStringMatch
new:		SUBSTR numericStringSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{16} )
new:	attributetype ( 2.5.4.26 NAME 'registeredAddress'
new:		DESC 'RFC2256: registered postal address'
new:		SUP postalAddress
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )
new:	attributetype ( 2.5.4.27 NAME 'destinationIndicator'
new:		DESC 'RFC2256: destination indicator'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{128} )
new:	attributetype ( 2.5.4.28 NAME 'preferredDeliveryMethod'
new:		DESC 'RFC2256: preferred delivery method'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.14
new:		SINGLE-VALUE )
new:	attributetype ( 2.5.4.29 NAME 'presentationAddress'
new:		DESC 'RFC2256: presentation address'
new:		EQUALITY presentationAddressMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.43
new:		SINGLE-VALUE )
new:	attributetype ( 2.5.4.30 NAME 'supportedApplicationContext'
new:		DESC 'RFC2256: supported application context'
new:		EQUALITY objectIdentifierMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )
new:	attributetype ( 2.5.4.31 NAME 'member'
new:		DESC 'RFC2256: member of a group'
new:		SUP distinguishedName )
new:	attributetype ( 2.5.4.32 NAME 'owner'
new:		DESC 'RFC2256: owner (of the object)'
new:		SUP distinguishedName )
new:	attributetype ( 2.5.4.33 NAME 'roleOccupant'
new:		DESC 'RFC2256: occupant of role'
new:		SUP distinguishedName )
new:	attributetype ( 2.5.4.36 NAME 'userCertificate'
new:		DESC 'RFC2256: X.509 user certificate, use ;binary'
new:		EQUALITY certificateExactMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.8 )
new:	attributetype ( 2.5.4.37 NAME 'cACertificate'
new:		DESC 'RFC2256: X.509 CA certificate, use ;binary'
new:		EQUALITY certificateExactMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.8 )
new:	attributetype ( 2.5.4.38 NAME 'authorityRevocationList'
new:		DESC 'RFC2256: X.509 authority revocation list, use ;binary'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )
new:	attributetype ( 2.5.4.39 NAME 'certificateRevocationList'
new:		DESC 'RFC2256: X.509 certificate revocation list, use ;binary'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )
new:	attributetype ( 2.5.4.40 NAME 'crossCertificatePair'
new:		DESC 'RFC2256: X.509 cross certificate pair, use ;binary'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.10 )
new:	attributetype ( 2.5.4.42 NAME ( 'givenName' 'gn' )
new:		DESC 'RFC2256: first name(s) for which the entity is known by'
new:		SUP name )
new:	attributetype ( 2.5.4.43 NAME 'initials'
new:		DESC 'RFC2256: initials of some or all of names, but not the surname(s).'
new:		SUP name )
new:	attributetype ( 2.5.4.44 NAME 'generationQualifier'
new:		DESC 'RFC2256: name qualifier indicating a generation'
new:		SUP name )
new:	attributetype ( 2.5.4.45 NAME 'x500UniqueIdentifier'
new:		DESC 'RFC2256: X.500 unique identifier'
new:		EQUALITY bitStringMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.6 )
new:	attributetype ( 2.5.4.46 NAME 'dnQualifier'
new:		DESC 'RFC2256: DN qualifier'
new:		EQUALITY caseIgnoreMatch
new:		ORDERING caseIgnoreOrderingMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 )
new:	attributetype ( 2.5.4.47 NAME 'enhancedSearchGuide'
new:		DESC 'RFC2256: enhanced search guide'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.21 )
new:	attributetype ( 2.5.4.48 NAME 'protocolInformation'
new:		DESC 'RFC2256: protocol information'
new:		EQUALITY protocolInformationMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.42 )
new:	attributetype ( 2.5.4.50 NAME 'uniqueMember'
new:		DESC 'RFC2256: unique member of a group'
new:		EQUALITY uniqueMemberMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.34 )
new:	attributetype ( 2.5.4.51 NAME 'houseIdentifier'
new:		DESC 'RFC2256: house identifier'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )
new:	attributetype ( 2.5.4.52 NAME 'supportedAlgorithms'
new:		DESC 'RFC2256: supported algorithms'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.49 )
new:	attributetype ( 2.5.4.53 NAME 'deltaRevocationList'
new:		DESC 'RFC2256: delta revocation list; use ;binary'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )
new:	attributetype ( 2.5.4.54 NAME 'dmdName'
new:		DESC 'RFC2256: name of DMD'
new:		SUP name )
new:	attributetype ( 2.5.4.65 NAME 'pseudonym'
new:		DESC 'X.520(4th): pseudonym for the object'
new:		SUP name )
new:	objectclass ( 2.5.6.2 NAME 'country'
new:		DESC 'RFC2256: a country'
new:		SUP top STRUCTURAL
new:		MUST c
new:		MAY ( searchGuide $ description ) )
new:	objectclass ( 2.5.6.3 NAME 'locality'
new:		DESC 'RFC2256: a locality'
new:		SUP top STRUCTURAL
new:		MAY ( street $ seeAlso $ searchGuide $ st $ l $ description ) )
new:	objectclass ( 2.5.6.4 NAME 'organization'
new:		DESC 'RFC2256: an organization'
new:		SUP top STRUCTURAL
new:		MUST o
new:		MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $
new:			x121Address $ registeredAddress $ destinationIndicator $
new:			preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $
new:			telephoneNumber $ internationaliSDNNumber $
new:			facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $
new:			postalAddress $ physicalDeliveryOfficeName $ st $ l $ description ) )
new:	objectclass ( 2.5.6.5 NAME 'organizationalUnit'
new:		DESC 'RFC2256: an organizational unit'
new:		SUP top STRUCTURAL
new:		MUST ou
new:		MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $
new:			x121Address $ registeredAddress $ destinationIndicator $
new:			preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $
new:			telephoneNumber $ internationaliSDNNumber $
new:			facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $
new:			postalAddress $ physicalDeliveryOfficeName $ st $ l $ description ) )
new:	objectclass ( 2.5.6.6 NAME 'person'
new:		DESC 'RFC2256: a person'
new:		SUP top STRUCTURAL
new:		MUST ( sn $ cn )
new:		MAY ( userPassword $ telephoneNumber $ seeAlso $ description ) )
new:	objectclass ( 2.5.6.7 NAME 'organizationalPerson'
new:		DESC 'RFC2256: an organizational person'
new:		SUP person STRUCTURAL
new:		MAY ( title $ x121Address $ registeredAddress $ destinationIndicator $
new:			preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $
new:			telephoneNumber $ internationaliSDNNumber $
new:			facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $
new:			postalAddress $ physicalDeliveryOfficeName $ ou $ st $ l ) )
new:	objectclass ( 2.5.6.8 NAME 'organizationalRole'
new:		DESC 'RFC2256: an organizational role'
new:		SUP top STRUCTURAL
new:		MUST cn
new:		MAY ( x121Address $ registeredAddress $ destinationIndicator $
new:			preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $
new:			telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $
new:			seeAlso $ roleOccupant $ preferredDeliveryMethod $ street $
new:			postOfficeBox $ postalCode $ postalAddress $
new:			physicalDeliveryOfficeName $ ou $ st $ l $ description ) )
new:	objectclass ( 2.5.6.9 NAME 'groupOfNames'
new:		DESC 'RFC2256: a group of names (DNs)'
new:		SUP top STRUCTURAL
new:		MUST ( member $ cn )
new:		MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ description ) )
new:	objectclass ( 2.5.6.10 NAME 'residentialPerson'
new:		DESC 'RFC2256: an residential person'
new:		SUP person STRUCTURAL
new:		MUST l
new:		MAY ( businessCategory $ x121Address $ registeredAddress $
new:			destinationIndicator $ preferredDeliveryMethod $ telexNumber $
new:			teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $
new:			facsimileTelephoneNumber $ preferredDeliveryMethod $ street $
new:			postOfficeBox $ postalCode $ postalAddress $
new:			physicalDeliveryOfficeName $ st $ l ) )
new:	objectclass ( 2.5.6.11 NAME 'applicationProcess'
new:		DESC 'RFC2256: an application process'
new:		SUP top STRUCTURAL
new:		MUST cn
new:		MAY ( seeAlso $ ou $ l $ description ) )
new:	objectclass ( 2.5.6.12 NAME 'applicationEntity'
new:		DESC 'RFC2256: an application entity'
new:		SUP top STRUCTURAL
new:		MUST ( presentationAddress $ cn )
new:		MAY ( supportedApplicationContext $ seeAlso $ ou $ o $ l $
new:		description ) )
new:	objectclass ( 2.5.6.13 NAME 'dSA'
new:		DESC 'RFC2256: a directory system agent (a server)'
new:		SUP applicationEntity STRUCTURAL
new:		MAY knowledgeInformation )
new:	objectclass ( 2.5.6.14 NAME 'device'
new:		DESC 'RFC2256: a device'
new:		SUP top STRUCTURAL
new:		MUST cn
new:		MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ description ) )
new:	objectclass ( 2.5.6.15 NAME 'strongAuthenticationUser'
new:		DESC 'RFC2256: a strong authentication user'
new:		SUP top AUXILIARY
new:		MUST userCertificate )
new:	objectclass ( 2.5.6.16 NAME 'certificationAuthority'
new:		DESC 'RFC2256: a certificate authority'
new:		SUP top AUXILIARY
new:		MUST ( authorityRevocationList $ certificateRevocationList $
new:			cACertificate ) MAY crossCertificatePair )
new:	objectclass ( 2.5.6.17 NAME 'groupOfUniqueNames'
new:		DESC 'RFC2256: a group of unique names (DN and Unique Identifier)'
new:		SUP top STRUCTURAL
new:		MUST ( uniqueMember $ cn )
new:		MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ description ) )
new:	objectclass ( 2.5.6.18 NAME 'userSecurityInformation'
new:		DESC 'RFC2256: a user security information'
new:		SUP top AUXILIARY
new:		MAY ( supportedAlgorithms ) )
new:	objectclass ( 2.5.6.16.2 NAME 'certificationAuthority-V2'
new:		SUP certificationAuthority
new:		AUXILIARY MAY ( deltaRevocationList ) )
new:	objectclass ( 2.5.6.19 NAME 'cRLDistributionPoint'
new:		SUP top STRUCTURAL
new:		MUST ( cn )
new:		MAY ( certificateRevocationList $ authorityRevocationList $
new:			deltaRevocationList ) )
new:	objectclass ( 2.5.6.20 NAME 'dmd'
new:		SUP top STRUCTURAL
new:		MUST ( dmdName )
new:		MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $
new:			x121Address $ registeredAddress $ destinationIndicator $
new:			preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $
new:			telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $
new:			street $ postOfficeBox $ postalCode $ postalAddress $
new:			physicalDeliveryOfficeName $ st $ l $ description ) )
new:	objectclass ( 2.5.6.21 NAME 'pkiUser'
new:		DESC 'RFC2587: a PKI user'
new:		SUP top AUXILIARY
new:		MAY userCertificate )
new:	objectclass ( 2.5.6.22 NAME 'pkiCA'
new:		DESC 'RFC2587: PKI certificate authority'
new:		SUP top AUXILIARY
new:		MAY ( authorityRevocationList $ certificateRevocationList $
new:			cACertificate $ crossCertificatePair ) )
new:	objectclass ( 2.5.6.23 NAME 'deltaCRL'
new:		DESC 'RFC2587: PKI user'
new:		SUP top AUXILIARY
new:		MAY deltaRevocationList )
new:	objectclass ( 1.3.6.1.4.1.250.3.15 NAME 'labeledURIObject'
new:		DESC 'RFC2079: object that contains the URI attribute type'
new:		SUP top AUXILIARY
new:		MAY ( labeledURI ) )
new:	attributetype ( 0.9.2342.19200300.100.1.3
new:		NAME ( 'mail' 'rfc822Mailbox' )
new:		DESC 'RFC1274: RFC822 Mailbox'
new:	    EQUALITY caseIgnoreIA5Match
new:	    SUBSTR caseIgnoreIA5SubstringsMatch
new:	    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
new:	objectclass ( 0.9.2342.19200300.100.4.19 NAME 'simpleSecurityObject'
new:		DESC 'RFC1274: simple security object'
new:		SUP top AUXILIARY
new:		MUST userPassword )
new:	attributetype ( 0.9.2342.19200300.100.1.25
new:		NAME ( 'dc' 'domainComponent' )
new:		DESC 'RFC1274/2247: domain component'
new:		EQUALITY caseIgnoreIA5Match
new:		SUBSTR caseIgnoreIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
new:	objectclass ( 1.3.6.1.4.1.1466.344 NAME 'dcObject'
new:		DESC 'RFC2247: domain component object'
new:		SUP top AUXILIARY MUST dc )
new:	objectclass ( 1.3.6.1.1.3.1 NAME 'uidObject'
new:		DESC 'RFC2377: uid object'
new:		SUP top AUXILIARY MUST uid )
new:	attributetype ( 0.9.2342.19200300.100.1.37
new:		NAME 'associatedDomain'
new:		DESC 'RFC1274: domain associated with object'
new:		EQUALITY caseIgnoreIA5Match
new:		SUBSTR caseIgnoreIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 1.2.840.113549.1.9.1
new:		NAME ( 'email' 'emailAddress' 'pkcs9email' )
new:		DESC 'RFC3280: legacy attribute for email addresses in DNs'
new:		EQUALITY caseIgnoreIA5Match
new:		SUBSTR caseIgnoreIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )

software - ldap - /etc/ldap/schema/cosine.schema

new:	attributetype ( 0.9.2342.19200300.100.1.2 NAME 'textEncodedORAddress'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.4 NAME 'info'
new:		DESC 'RFC1274: general information'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )
new:	attributetype ( 0.9.2342.19200300.100.1.5
new:		NAME ( 'drink' 'favouriteDrink' )
new:		DESC 'RFC1274: favorite drink'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.6 NAME 'roomNumber'
new:		DESC 'RFC1274: room number'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.7 NAME 'photo'
new:		DESC 'RFC1274: photo (G3 fax)'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.23{25000} )
new:	attributetype ( 0.9.2342.19200300.100.1.8 NAME 'userClass'
new:		DESC 'RFC1274: category of user'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.9 NAME 'host'
new:		DESC 'RFC1274: host computer'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.10 NAME 'manager'
new:		DESC 'RFC1274: DN of manager'
new:		EQUALITY distinguishedNameMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
new:	attributetype ( 0.9.2342.19200300.100.1.11 NAME 'documentIdentifier'
new:		DESC 'RFC1274: unique identifier of document'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.12 NAME 'documentTitle'
new:		DESC 'RFC1274: title of document'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.13 NAME 'documentVersion'
new:		DESC 'RFC1274: version of document'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.14 NAME 'documentAuthor'
new:		DESC 'RFC1274: DN of author of document'
new:		EQUALITY distinguishedNameMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
new:	attributetype ( 0.9.2342.19200300.100.1.15 NAME 'documentLocation'
new:		DESC 'RFC1274: location of document original'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.20
new:		NAME ( 'homePhone' 'homeTelephoneNumber' )
new:		DESC 'RFC1274: home telephone number'
new:		EQUALITY telephoneNumberMatch
new:		SUBSTR telephoneNumberSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.50 )
new:	attributetype ( 0.9.2342.19200300.100.1.21 NAME 'secretary'
new:		DESC 'RFC1274: DN of secretary'
new:		EQUALITY distinguishedNameMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
new:	attributetype ( 0.9.2342.19200300.100.1.22 NAME 'otherMailbox'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.39 )
new:	attributetype ( 0.9.2342.19200300.100.1.26 NAME 'aRecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.27 NAME 'mDRecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.28 NAME 'mXRecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.29 NAME 'nSRecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.30 NAME 'sOARecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 0.9.2342.19200300.100.1.38 NAME 'associatedName'
new:		DESC 'RFC1274: DN of entry associated with domain'
new:		EQUALITY distinguishedNameMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
new:	attributetype ( 0.9.2342.19200300.100.1.39 NAME 'homePostalAddress'
new:		DESC 'RFC1274: home postal address'
new:		EQUALITY caseIgnoreListMatch
new:		SUBSTR caseIgnoreListSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )
new:	attributetype ( 0.9.2342.19200300.100.1.40 NAME 'personalTitle'
new:		DESC 'RFC1274: personal title'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.41
new:		NAME ( 'mobile' 'mobileTelephoneNumber' )
new:		DESC 'RFC1274: mobile telephone number'
new:		EQUALITY telephoneNumberMatch
new:		SUBSTR telephoneNumberSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.50 )
new:	attributetype ( 0.9.2342.19200300.100.1.42
new:		NAME ( 'pager' 'pagerTelephoneNumber' )
new:		DESC 'RFC1274: pager telephone number'
new:		EQUALITY telephoneNumberMatch
new:		SUBSTR telephoneNumberSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.50 )
new:	attributetype ( 0.9.2342.19200300.100.1.43
new:		NAME ( 'co' 'friendlyCountryName' )
new:		DESC 'RFC1274: friendly country name'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
new:	attributetype ( 0.9.2342.19200300.100.1.44 NAME 'uniqueIdentifier'
new:		DESC 'RFC1274: unique identifer'
new:		EQUALITY caseIgnoreMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.45 NAME 'organizationalStatus'
new:		DESC 'RFC1274: organizational status'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.46 NAME 'janetMailbox'
new:		DESC 'RFC1274: Janet mailbox'
new:		EQUALITY caseIgnoreIA5Match
new:		SUBSTR caseIgnoreIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.47
new:		NAME 'mailPreferenceOption'
new:		DESC 'RFC1274: mail preference option'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
new:	attributetype ( 0.9.2342.19200300.100.1.48 NAME 'buildingName'
new:		DESC 'RFC1274: name of building'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
new:	attributetype ( 0.9.2342.19200300.100.1.49 NAME 'dSAQuality'
new:		DESC 'RFC1274: DSA Quality'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.19 SINGLE-VALUE )
new:	attributetype ( 0.9.2342.19200300.100.1.50 NAME 'singleLevelQuality'
new:		DESC 'RFC1274: Single Level Quality'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SINGLE-VALUE )
new:	attributetype ( 0.9.2342.19200300.100.1.51 NAME 'subtreeMinimumQuality'
new:		DESC 'RFC1274: Subtree Mininum Quality'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SINGLE-VALUE )
new:	attributetype ( 0.9.2342.19200300.100.1.52 NAME 'subtreeMaximumQuality'
new:		DESC 'RFC1274: Subtree Maximun Quality'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SINGLE-VALUE )
new:	attributetype ( 0.9.2342.19200300.100.1.53 NAME 'personalSignature'
new:		DESC 'RFC1274: Personal Signature (G3 fax)'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.23 )
new:	attributetype ( 0.9.2342.19200300.100.1.54 NAME 'dITRedirect'
new:		DESC 'RFC1274: DIT Redirect'
new:		EQUALITY distinguishedNameMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
new:	attributetype ( 0.9.2342.19200300.100.1.55 NAME 'audio'
new:		DESC 'RFC1274: audio (u-law)'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.4{25000} )
new:	attributetype ( 0.9.2342.19200300.100.1.56 NAME 'documentPublisher'
new:		DESC 'RFC1274: publisher of document'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
new:	objectclass ( 0.9.2342.19200300.100.4.4
new:		NAME ( 'pilotPerson' 'newPilotPerson' )
new:		SUP person STRUCTURAL
new:		MAY ( userid $ textEncodedORAddress $ rfc822Mailbox $
new:			favouriteDrink $ roomNumber $ userClass $
new:			homeTelephoneNumber $ homePostalAddress $ secretary $
new:			personalTitle $ preferredDeliveryMethod $ businessCategory $
new:			janetMailbox $ otherMailbox $ mobileTelephoneNumber $
new:			pagerTelephoneNumber $ organizationalStatus $
new:			mailPreferenceOption $ personalSignature )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.5 NAME 'account'
new:		SUP top STRUCTURAL
new:		MUST userid
new:		MAY ( description $ seeAlso $ localityName $
new:			organizationName $ organizationalUnitName $ host )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.6 NAME 'document'
new:		SUP top STRUCTURAL
new:		MUST documentIdentifier
new:		MAY ( commonName $ description $ seeAlso $ localityName $
new:			organizationName $ organizationalUnitName $
new:			documentTitle $ documentVersion $ documentAuthor $
new:			documentLocation $ documentPublisher )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.7 NAME 'room'
new:		SUP top STRUCTURAL
new:		MUST commonName
new:		MAY ( roomNumber $ description $ seeAlso $ telephoneNumber )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.9 NAME 'documentSeries'
new:		SUP top STRUCTURAL
new:		MUST commonName
new:		MAY ( description $ seeAlso $ telephonenumber $
new:			localityName $ organizationName $ organizationalUnitName )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.13 NAME 'domain'
new:		SUP top STRUCTURAL
new:		MUST domainComponent
new:		MAY ( associatedName $ organizationName $ description $
new:			businessCategory $ seeAlso $ searchGuide $ userPassword $
new:			localityName $ stateOrProvinceName $ streetAddress $
new:			physicalDeliveryOfficeName $ postalAddress $ postalCode $
new:			postOfficeBox $ streetAddress $
new:			facsimileTelephoneNumber $ internationalISDNNumber $
new:			telephoneNumber $ teletexTerminalIdentifier $ telexNumber $
new:			preferredDeliveryMethod $ destinationIndicator $
new:			registeredAddress $ x121Address )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.14 NAME 'RFC822localPart'
new:		SUP domain STRUCTURAL
new:		MAY ( commonName $ surname $ description $ seeAlso $ telephoneNumber $
new:			physicalDeliveryOfficeName $ postalAddress $ postalCode $
new:			postOfficeBox $ streetAddress $
new:			facsimileTelephoneNumber $ internationalISDNNumber $
new:			telephoneNumber $ teletexTerminalIdentifier $
new:			telexNumber $ preferredDeliveryMethod $ destinationIndicator $
new:			registeredAddress $ x121Address )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.15 NAME 'dNSDomain'
new:		SUP domain STRUCTURAL
new:		MAY ( ARecord $ MDRecord $ MXRecord $ NSRecord $
new:			SOARecord $ CNAMERecord )
new:		)
new:	objectclass ( 0.9.2342.19200300.100.4.17 NAME 'domainRelatedObject'
new:		DESC 'RFC1274: an object related to an domain'
new:		SUP top AUXILIARY
new:		MUST associatedDomain )
new:	objectclass ( 0.9.2342.19200300.100.4.18 NAME 'friendlyCountry'
new:		SUP country STRUCTURAL
new:		MUST friendlyCountryName )
new:	objectclass ( 0.9.2342.19200300.100.4.20 NAME 'pilotOrganization'
new:		SUP ( organization $ organizationalUnit ) STRUCTURAL
new:		MAY buildingName )
new:	objectclass ( 0.9.2342.19200300.100.4.21 NAME 'pilotDSA'
new:		SUP dsa STRUCTURAL
new:		MAY dSAQuality )
new:	objectclass ( 0.9.2342.19200300.100.4.22 NAME 'qualityLabelledData'
new:		SUP top AUXILIARY
new:		MUST dsaQuality
new:		MAY ( subtreeMinimumQuality $ subtreeMaximumQuality )
new:		)

software - ldap - /etc/ldap/schema/nis.schema

new:	attributetype ( 1.3.6.1.1.1.1.2 NAME 'gecos'
new:		DESC 'The GECOS field; the common name'
new:		EQUALITY caseIgnoreIA5Match
new:		SUBSTR caseIgnoreIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
new:		DESC 'The absolute path to the home directory'
new:		EQUALITY caseExactIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.4 NAME 'loginShell'
new:		DESC 'The path to the login shell'
new:		EQUALITY caseExactIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.6 NAME 'shadowMin'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.7 NAME 'shadowMax'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.8 NAME 'shadowWarning'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.9 NAME 'shadowInactive'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.10 NAME 'shadowExpire'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.11 NAME 'shadowFlag'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.12 NAME 'memberUid'
new:		EQUALITY caseExactIA5Match
new:		SUBSTR caseExactIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup'
new:		EQUALITY caseExactIA5Match
new:		SUBSTR caseExactIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple'
new:		DESC 'Netgroup triple'
new:		SYNTAX 1.3.6.1.1.1.0.0 )
new:	attributetype ( 1.3.6.1.1.1.1.15 NAME 'ipServicePort'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol'
new:		SUP name )
new:	attributetype ( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber'
new:		EQUALITY integerMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber'
new:		DESC 'IP address'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
new:	attributetype ( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber'
new:		DESC 'IP network'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber'
new:		DESC 'IP netmask'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
new:	attributetype ( 1.3.6.1.1.1.1.22 NAME 'macAddress'
new:		DESC 'MAC address'
new:		EQUALITY caseIgnoreIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
new:	attributetype ( 1.3.6.1.1.1.1.23 NAME 'bootParameter'
new:		DESC 'rpc.bootparamd parameter'
new:		SYNTAX 1.3.6.1.1.1.0.1 )
new:	attributetype ( 1.3.6.1.1.1.1.24 NAME 'bootFile'
new:		DESC 'Boot image name'
new:		EQUALITY caseExactIA5Match
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
new:	attributetype ( 1.3.6.1.1.1.1.26 NAME 'nisMapName'
new:		SUP name )
new:	attributetype ( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry'
new:		EQUALITY caseExactIA5Match
new:		SUBSTR caseExactIA5SubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1024} SINGLE-VALUE )
new:	objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount'
new:		DESC 'Abstraction of an account with POSIX attributes'
new:		SUP top AUXILIARY
new:		MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory )
new:		MAY ( userPassword $ loginShell $ gecos $ description ) )
new:	objectclass ( 1.3.6.1.1.1.2.1 NAME 'shadowAccount'
new:		DESC 'Additional attributes for shadow passwords'
new:		SUP top AUXILIARY
new:		MUST uid
new:		MAY ( userPassword $ shadowLastChange $ shadowMin $
new:		      shadowMax $ shadowWarning $ shadowInactive $
new:		      shadowExpire $ shadowFlag $ description ) )
new:	objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup'
new:		DESC 'Abstraction of a group of accounts'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ gidNumber )
new:		MAY ( userPassword $ memberUid $ description ) )
new:	objectclass ( 1.3.6.1.1.1.2.3 NAME 'ipService'
new:		DESC 'Abstraction an Internet Protocol service'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ ipServicePort $ ipServiceProtocol )
new:		MAY ( description ) )
new:	objectclass ( 1.3.6.1.1.1.2.4 NAME 'ipProtocol'
new:		DESC 'Abstraction of an IP protocol'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ ipProtocolNumber $ description )
new:		MAY description )
new:	objectclass ( 1.3.6.1.1.1.2.5 NAME 'oncRpc'
new:		DESC 'Abstraction of an ONC/RPC binding'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ oncRpcNumber $ description )
new:		MAY description )
new:	objectclass ( 1.3.6.1.1.1.2.6 NAME 'ipHost'
new:		DESC 'Abstraction of a host, an IP device'
new:		SUP top AUXILIARY
new:		MUST ( cn $ ipHostNumber )
new:		MAY ( l $ description $ manager ) )
new:	objectclass ( 1.3.6.1.1.1.2.7 NAME 'ipNetwork'
new:		DESC 'Abstraction of an IP network'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ ipNetworkNumber )
new:		MAY ( ipNetmaskNumber $ l $ description $ manager ) )
new:	objectclass ( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup'
new:		DESC 'Abstraction of a netgroup'
new:		SUP top STRUCTURAL
new:		MUST cn
new:		MAY ( nisNetgroupTriple $ memberNisNetgroup $ description ) )
new:	objectclass ( 1.3.6.1.1.1.2.9 NAME 'nisMap'
new:		DESC 'A generic abstraction of a NIS map'
new:		SUP top STRUCTURAL
new:		MUST nisMapName
new:		MAY description )
new:	objectclass ( 1.3.6.1.1.1.2.10 NAME 'nisObject'
new:		DESC 'An entry in a NIS map'
new:		SUP top STRUCTURAL
new:		MUST ( cn $ nisMapEntry $ nisMapName )
new:		MAY description )
new:	objectclass ( 1.3.6.1.1.1.2.11 NAME 'ieee802Device'
new:		DESC 'A device with a MAC address'
new:		SUP top AUXILIARY
new:		MAY macAddress )
new:	objectclass ( 1.3.6.1.1.1.2.12 NAME 'bootableDevice'
new:		DESC 'A device with boot parameters'
new:		SUP top AUXILIARY
new:		MAY ( bootFile $ bootParameter ) )

software - ldap - /etc/ldap/schema/inetorgperson.schema

new:	attributetype ( 2.16.840.1.113730.3.1.1
new:		NAME 'carLicense'
new:		DESC 'RFC2798: vehicle license or registration plate'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
new:	attributetype ( 2.16.840.1.113730.3.1.2
new:		NAME 'departmentNumber'
new:		DESC 'RFC2798: identifies a department within an organization'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
new:	attributetype ( 2.16.840.1.113730.3.1.241
new:		NAME 'displayName'
new:		DESC 'RFC2798: preferred name to be used when displaying entries'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
new:		SINGLE-VALUE )
new:	attributetype ( 2.16.840.1.113730.3.1.3
new:		NAME 'employeeNumber'
new:		DESC 'RFC2798: numerically identifies an employee within an organization'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
new:		SINGLE-VALUE )
new:	attributetype ( 2.16.840.1.113730.3.1.4
new:		NAME 'employeeType'
new:		DESC 'RFC2798: type of employment for a person'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
new:	attributetype ( 0.9.2342.19200300.100.1.60
new:		NAME 'jpegPhoto'
new:		DESC 'RFC2798: a JPEG image'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )
new:	attributetype ( 2.16.840.1.113730.3.1.39
new:		NAME 'preferredLanguage'
new:		DESC 'RFC2798: preferred written or spoken language for a person'
new:		EQUALITY caseIgnoreMatch
new:		SUBSTR caseIgnoreSubstringsMatch
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
new:		SINGLE-VALUE )
new:	attributetype ( 2.16.840.1.113730.3.1.40
new:		NAME 'userSMIMECertificate'
new:		DESC 'RFC2798: PKCS#7 SignedData used to support S/MIME'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 )
new:	attributetype ( 2.16.840.1.113730.3.1.216
new:		NAME 'userPKCS12'
new:		DESC 'RFC2798: personal identity information, a PKCS #12 PFX'
new:		SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 )
new:	objectclass	( 2.16.840.1.113730.3.2.2
new:	    NAME 'inetOrgPerson'
new:		DESC 'RFC2798: Internet Organizational Person'
new:	    SUP organizationalPerson
new:	    STRUCTURAL
new:		MAY (
new:			audio $ businessCategory $ carLicense $ departmentNumber $
new:			displayName $ employeeNumber $ employeeType $ givenName $
new:			homePhone $ homePostalAddress $ initials $ jpegPhoto $
new:			labeledURI $ mail $ manager $ mobile $ o $ pager $
new:			photo $ roomNumber $ secretary $ uid $ userCertificate $
new:			x500uniqueIdentifier $ preferredLanguage $
new:			userSMIMECertificate $ userPKCS12 )
new:		)

system - ld - ldconfig - /usr/lib

new:	libdb-4.2.so -> libdb-4.2.so
new:	libgtrtst.so.1 -> libgtrtst.so.1.0.0
new:	libltdl.so.3 -> libltdl.so.3.1.6
new:	libodbc.so.1 -> libodbc.so.1.0.0
new:	libodbccr.so.1 -> libodbccr.so.1.0.0
new:	libodbcinst.so.1 -> libodbcinst.so.1.0.0
new:	libslapi-2.4.so.2 -> libslapi-2.4.so.2.1.0
new:	libslp.so.1 -> libslp.so.1.0.1

users - /etc/passwd

new:	openldap:x:105:107:OpenLDAP Server Account,,,:/var/lib/ldap:/bin/false

users - /etc/group

new:	openldap:107:

Top    Back    Differences at: 2010-05-11 08.59.30

remark                        : preparations
runtime                       : 49
count                         : 133
previous date                 : 2010-05-11
previous time                 : 01.38.06

boot - defaults - /etc/default/ntp

new:	NTPD_OPTS='-g'

boot - defaults - /etc/default/ntpdate

new:	NTPDATE_USE_NTP_CONF=yes
new:	NTPSERVERS="0.debian.pool.ntp.org 1.debian.pool.ntp.org 2.debian.pool.ntp.org 3.debian.pool.ntp.org"
new:	NTPOPTIONS=""

boot - defaults - /etc/default/ssh

new:	SSHD_OPTS=
new:	SSHD_OOM_ADJUST=-17

boot - run level - /etc/rc0.d

new:	K23ntp -> ../init.d/ntp

boot - run level - /etc/rc1.d

new:	K23ntp -> ../init.d/ntp
new:	K84ssh -> ../init.d/ssh

boot - run level - /etc/rc2.d

new:	S16ssh -> ../init.d/ssh
new:	S23ntp -> ../init.d/ntp

boot - run level - /etc/rc3.d

new:	S16ssh -> ../init.d/ssh
new:	S23ntp -> ../init.d/ntp

boot - run level - /etc/rc4.d

new:	S16ssh -> ../init.d/ssh
new:	S23ntp -> ../init.d/ntp

boot - run level - /etc/rc5.d

new:	S16ssh -> ../init.d/ssh
new:	S23ntp -> ../init.d/ntp

boot - run level - /etc/rc6.d

new:	K23ntp -> ../init.d/ntp

boot - run level - /etc/rcS.d

new:	S70x11-common -> ../init.d/x11-common

network - ports

new:	ssh 22

network - ntp - /etc/ntp.conf

new:	driftfile /var/lib/ntp/ntp.drift
new:	statistics loopstats peerstats clockstats
new:	filegen loopstats file loopstats type day enable
new:	filegen peerstats file peerstats type day enable
new:	filegen clockstats file clockstats type day enable
new:	server 0.debian.pool.ntp.org iburst dynamic
new:	server 1.debian.pool.ntp.org iburst dynamic
new:	server 2.debian.pool.ntp.org iburst dynamic
new:	server 3.debian.pool.ntp.org iburst dynamic
new:	restrict -4 default kod notrap nomodify nopeer noquery
new:	restrict -6 default kod notrap nomodify nopeer noquery
new:	restrict 127.0.0.1
new:	restrict ::1

software - cron - /etc/cron.daily/ntp

new:	#!/bin/sh
new:	statsdir=$(cat /etc/ntp.conf | grep -v '^#' | sed -n 's/statsdir \([^ ][^ ]*\)/\1/p')
new:	if [ -n "$statsdir" ] && [ -d "$statsdir" ]; then
new:		find "$statsdir" -type f -mtime +7 -exec rm {} \;
new:		cd "$statsdir"
new:		ls loopstats.???????? peerstats.???????? > /dev/null 2>&1
new:		if [ $? -eq 0 ]; then
new:			gzip --best --quiet loopstats.???????? peerstats.????????
new:			return=$?
new:			case $return in
new:			    2)
new:				exit 0			# squash all warnings
new:				;;
new:			    *)
new:				exit $return	 	# but let real errors through
new:				;;
new:			esac
new:		fi
new:	fi

software - installed Debian packages

new:	ii  libcap1                                                               1:1.10-14                                                             support for getting/setting POSIX.1e capabilities
new:	ii  libpcap0.8                                                            0.9.8-5                                                               system interface for user-level packet capture
new:	ii  libx11-6                                                              2:1.1.5-2                                                             X11 client-side library
new:	ii  libx11-data                                                           2:1.1.5-2                                                             X11 client-side library
new:	ii  libxau6                                                               1:1.0.3-3                                                             X11 authorisation library
new:	ii  libxcb-xlib0                                                          1.1-1.2                                                               X C Binding, Xlib/XCB interface library
new:	ii  libxcb1                                                               1.1-1.2                                                               X C Binding
new:	ii  libxdmcp6                                                             1:1.0.2-3                                                             X11 Display Manager Control Protocol library
new:	ii  libxext6                                                              2:1.0.4-1                                                             X11 miscellaneous extension library
new:	ii  libxmuu1                                                              2:1.0.4-1                                                             X11 miscellaneous micro-utility library
new:	ii  lockfile-progs                                                        0.1.11-0.1                                                            Programs for locking and unlocking files and mailboxes
new:	ii  nmap                                                                  4.62-1                                                                The Network Mapper
new:	ii  ntp                                                                   1:4.2.4p4+dfsg-8lenny3                                                Network Time Protocol daemon and utility programs
new:	ii  ntpdate                                                               1:4.2.4p4+dfsg-8lenny3                                                client for setting system time from NTP servers
new:	ii  openssh-blacklist                                                     0.4.1                                                                 list of default blacklisted OpenSSH RSA and DSA keys
new:	ii  openssh-blacklist-extra                                               0.4.1                                                                 list of non-default blacklisted OpenSSH RSA and DSA keys
new:	ii  openssh-server                                                        1:5.1p1-5                                                             secure shell server, an rshd replacement
new:	ii  ssh                                                                   1:5.1p1-5                                                             secure shell client and server (metapackage)
new:	ii  x11-common                                                            1:7.3+20                                                              X Window System (X.Org) infrastructure
new:	ii  xauth                                                                 1:1.0.3-2                                                             X authentication utility

software - logcheck - /etc/logcheck/ignore.d.server/ntp

new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: time reset [+-]*[0-9]{1,2}\.[0-9]{6} s$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: synchronisation lost$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: no servers reachable$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: synchronized to ([0-9.]{7,15}|[0-9a-fA-F:.]{4,39}), stratum [0-9]+$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: synchronized to LOCAL\([0-9]+\), stratum [0-9]+$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: kernel time sync (disabled|enabled) [0-9]+$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: precision = [0-9]+\.[0-9]+ usec$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: peer ([.0-9]{7,15}|[0-9a-fA-F:.]{4,39}) now (in)?valid$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: adjusting local clock by -?[.0-9]+s$
new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: adjust time server -?[.0-9]+ offset$

software - logcheck - /etc/logcheck/ignore.d.server/ntpdate

new:	^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpdate\[[0-9]+\]: step time server [0-9.]{7,15} offset -?[0-9.]+ sec$

software - openssh2 - sshd_config

new:	Port 22
new:	Protocol 2
new:	HostKey /etc/ssh/ssh_host_rsa_key
new:	HostKey /etc/ssh/ssh_host_dsa_key
new:	UsePrivilegeSeparation yes
new:	KeyRegenerationInterval 3600
new:	ServerKeyBits 768
new:	SyslogFacility AUTH
new:	LogLevel INFO
new:	LoginGraceTime 120
new:	PermitRootLogin yes
new:	StrictModes yes
new:	RSAAuthentication yes
new:	PubkeyAuthentication yes
new:	IgnoreRhosts yes
new:	RhostsRSAAuthentication no
new:	HostbasedAuthentication no
new:	PermitEmptyPasswords no
new:	ChallengeResponseAuthentication no
new:	X11Forwarding yes
new:	X11DisplayOffset 10
new:	PrintMotd no
new:	PrintLastLog yes
new:	TCPKeepAlive yes
new:	AcceptEnv LANG LC_*
new:	Subsystem sftp /usr/lib/openssh/sftp-server
new:	UsePAM yes

software - pam - /etc/pam.d/sshd

new:	auth       required     pam_env.so # [1]
new:	auth       required     pam_env.so envfile=/etc/default/locale
new:	@include common-auth
new:	account    required     pam_nologin.so
new:	@include common-account
new:	@include common-session
new:	session    optional     pam_motd.so # [1]
new:	session    optional     pam_mail.so standard noenv # [1]
new:	session    required     pam_limits.so
new:	@include common-password

system - ld - ldconfig - /lib

new:	libcap.so.1 -> libcap.so.1.10

system - ld - ldconfig - /usr/lib

new:	libX11.so.6 -> libX11.so.6.2.0
new:	libXau.so.6 -> libXau.so.6.0.0
new:	libXdmcp.so.6 -> libXdmcp.so.6.0.0
new:	libXext.so.6 -> libXext.so.6.4.0
new:	libXmuu.so.1 -> libXmuu.so.1.0.0
new:	libpcap.so.0.8 -> libpcap.so.0.9.8
new:	libxcb-xlib.so.0 -> libxcb-xlib.so.0.0.0
new:	libxcb.so.1 -> libxcb.so.1.0.0

users - /etc/passwd

new:	ntp:x:103:106::/home/ntp:/bin/false
new:	sshd:x:104:65534::/var/run/sshd:/usr/sbin/nologin

users - /etc/group

new:	ntp:106:

users - check - pwck

new:	user ntp: directory /home/ntp does not exist

Top    Back    Differences at: 2010-05-11 01.38.06

remark                        : 
runtime                       : 47
count                         : 2
previous date                 : 2010-05-11
previous time                 : 01.36.10

software - installed Debian packages

old:	iF  scc                                                                   1.11-20                                                               System Configuration Collector
new:	ii  scc                                                                   1.11-20                                                               System Configuration Collector

Generated by SCC (© QNH) on Tue Dec 20 21:06:31 CET 2011

\n