webwml/db.debian.org/doc-general.wml

#use wml::debian::template title="General LDAP Documentation"
<p>
debian.org uses a single LDAP driven directory for account managment across
all the project run <a href="/machines.cgi">machines</a>. This directory
also provides services for leaving vacation notices, updating 
<a href="http://www.debian.org/devel/developers.loc">xplanet</a> coordinates,
email forwarding, ssh authentication keys and other information.

<p>
Note: the 'passwd' program and 'chfn' do not work with LDAP information.
Please use the web page or email gateway for the time being. All machines 
running OpenSSH are using replicated SSH RSA authentication keys.

<h1>Security and Privacy</h1>
Three levels of information security are provided by the database. The first
is completely public information that anyone can see either by issuing an
LDAP query or by visiting the web site. The next level is "maintainer-only"
information that requires authentication to the directory before it can be
accessed. The final level is admin-only or user-only information; this
information can only be viewed by the user or an administrator. 

<p>
Maintainer-only information includes precise location information
[postalcode, postal address, lat/long] telephone numbers, and the vacation
message.

<p>
Admin-only/user-only information includes email forwarding, ssh keys and
the encrypted password. Note that email forwarding is necessarily publicly 
viewable from accounts on the actual machines.

<p>
Entries in the directory are keyed to the developers PGP key, whoever has that
key can make any change to the directory through the mail interface.

<h1>Access</h1>
The directory has several means to access it:
<ul>
<li><a href="https://db.debian.org/login.html">SSL Web Forms</a>
<li>Finger gateway, <tt>finger foo@debian.org</tt>
<li><a href="doc-mail.html">Mail gateway</a>
<li><a href="doc-direct.html">Direct LDAP Access</a>
<li>LDAP command line tools such as <tt>ud-info</tt>
</ul>

<p>
<a href="password.html">Lost or forgotten password instructions</a>
1	#use wml::debian::template title="General LDAP Documentation"
2	<p>
3	debian.org uses a single LDAP driven directory for account managment across
4	all the project run <a href="/machines.cgi">machines</a>. This directory
5	also provides services for leaving vacation notices, updating
6	<a href="http://www.debian.org/devel/developers.loc">xplanet</a> coordinates,
7	email forwarding, ssh authentication keys and other information.
8
9	<p>
10	Note: the 'passwd' program and 'chfn' do not work with LDAP information.
11	Please use the web page or email gateway for the time being. All machines
12	running OpenSSH are using replicated SSH RSA authentication keys.
13
14	<h1>Security and Privacy</h1>
15	Three levels of information security are provided by the database. The first
16	is completely public information that anyone can see either by issuing an
17	LDAP query or by visiting the web site. The next level is "maintainer-only"
18	information that requires authentication to the directory before it can be
19	accessed. The final level is admin-only or user-only information; this
20	information can only be viewed by the user or an administrator.
21
22	<p>
23	Maintainer-only information includes precise location information
24	[postalcode, postal address, lat/long] telephone numbers, and the vacation
25	message.
26
27	<p>
28	Admin-only/user-only information includes email forwarding, ssh keys and
29	the encrypted password. Note that email forwarding is necessarily publicly
30	viewable from accounts on the actual machines.
31
32	<p>
33	Entries in the directory are keyed to the developers PGP key, whoever has that
34	key can make any change to the directory through the mail interface.
35
36	<h1>Access</h1>
37	The directory has several means to access it:
38	<ul>
39	<li><a href="https://db.debian.org/login.html">SSL Web Forms</a>
40	<li>Finger gateway, <tt>finger foo@debian.org</tt>
41	<li><a href="doc-mail.html">Mail gateway</a>
42	<li><a href="doc-direct.html">Direct LDAP Access</a>
43	<li>LDAP command line tools such as <tt>ud-info</tt>
44	</ul>
45
46	<p>
47	<a href="password.html">Lost or forgotten password instructions</a>