💾 Archived View for ldapguy.smol.pub › folk-wisdom-2022-02-18 captured on 2022-06-11 at 21:11:30. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2022-03-01)

➡️ Next capture (2024-07-08)

-=-=-=-=-=-=-

Folk Wisdom vs. RTFC

Trust Only The Config (OpenLDAP)

People don't look at or study the configurations on OpenLDAP servers they "inherit". They rely on briefings, etc. Folk Wisdom.

We're dealing with a situation like that. People describe the artifacts they see lying around and the conversations they've had with people in the culture and demand that we "Take Care of That". We review the artifacts but "taking care of that" almost always means doing something to the configuration to "Make It Happen".

Oddly, when we look at the configuration, carefully, the situation becomes clear. The received wisdom is simply wrong. That password quality checker in the repository somewhere compiles and MUST HAVE BEEN RUNNING is not wired in via the 'ppolicy' overlay's configuration stanza. NOT!!!

You think they'd believe you?

Nope. Not this time.