ELF>@P@8 @ ff66ppp@ $$Std PtdQtdRtdpppGNUGNU1 4+i\N>0>eL+ Y,]m +:$Z <hftwwG6JE, F"tU@p__gmon_start___ITM_deregisterTMCloneTable_ITM_registerTMCloneTable__cxa_finalizeauthnz_ldap_moduleapr_pstrdupapr_hash_getstrlenapr_pstrndupapr_table_getapr_xlate_open__stack_chk_failapr_pallocapr_thread_mutex_createapr_array_makeapr_pstrcat__ctype_toupper_locapr_table_setnstrcmpstrcasecmpapr_array_pushap_expr_parse_cmd_miapr_ldap_url_parsememsetstrncasecmpap_log_error_apr_pstrmemdupstrtolap_pregcompstrncmpapr_tokenize_to_argvap_server_root_relativeap_get_exec_lineap_find_linked_moduleap_pcfg_openfileapr_hash_makeap_cfg_getlineap_getword_confap_str_tolowerapr_hash_setap_cfg_closefileapr_dynamic_fn_retrieveap_register_auth_providerap_hook_post_configap_hook_optional_fn_retrieveapr_xlate_conv_bufferapr_snprintfstrchrap_log_rerror_ap_regexecapr_table_setldap_err2stringap_pregsubapr_pool_cleanup_nullapr_pool_cleanup_registerap_expr_str_execapr_pool_cleanup_killapr_thread_mutex_lockapr_thread_mutex_unlockap_getwordap_set_string_slotap_set_flag_slotlibldap-2.5.so.0libc.so.6mod_authnz_ldap.soOPENLDAP_2.5GLIBC_2.4GLIBC_2.2.5GLIBC_2.3 " ) ii 6ui @ii Lp'xp'y0/n0/Pe0/S0/H0/`<X/(084P@X̷x83(8 M(.@HcP4h p|x.x-ɸ(@߸08X`h04,A t({P x*8;;;`****@***!/>8: (08@HP X ` h p x "# $(%0&8'@(H)P+X,`-h.p0x12345679<=HHHtH5%hhhhhhhhqhah Qh Ah 1h !h hhhhhhhhhhqhahQhAh1h!hhhh h!h"h#h$h%h&h'qh(ah)Qh*Ah+1h,!h-h.h/h0h1h2h3h4h5%UD%mD%eD%]D%UD%MD%ED%=D%5D%-D%%D%D%D% D%D%D%D%D%D%ݹD%չD%͹D%ŹD%D%D%D%D%D%D%D%D%}D%uD%mD%eD%]D%UD%MD%ED%=D%5D%-D%%D%D%D% D%D%D%D%D%D%ݸD%ոD%͸D%ŸDH=HH9tHHt H=yH5rH)HH?HHHtHHtfD=5u+UH=jHt H=nd ]wH1Hff.HHHHHc@HHHHXL@`Ht$LJMttQuH@0HcRL1ff.@ISHIH;t0HK1fH˃HIH;uL g u L[H@E1HL[@ATIUHHtQH=·HHHHtHL]A\t@HHv}-t,H1]A\fHLH5]A\:f.HLH=AHHHHtzff.fSHH5lHHdH%(HD$15HthH;HHƄt!H,t[;tVQHuH;HHt"H H5Hu H$fD1HT$dH+%(u H[fDATUHS1iH1HxHIHǀHHH)HI,$I|$H H I$HQAD$|I$HID$H ID$ID$XID$`AD$hAD$PADŽ$I$HxHHHHH@IHH)QHHI$I$LID$lID$t[]A\ff.fAWAVL5gAUATUHSH8HHt$(Hc@L$HHH@H$ tM$LIT$8HH<$HLHHD$,1HD$Ld$Hl$HD$1LH81IHD$MdA,$@t%1fDHA HA, @uH$LLHHHHDD$(u_HD$HxpHP8HtH4HT$ /HT$ tFHHHM D$,D$,H8[]A\A]A^A_DHD$HP8DHl$H$H}H4*D$,H8HD$HP8UHHSHH5Ht}H5HtjH5HktgH5HXtdH5yHEtH5mHAHaEuCPH1[]CP1H[]CPH1[]CPH1[]ATHaUSHH ~ []A\@HH{@HII$1[]A\fDATHaUSHH ~ []A\@HPH{@HII$1[]A\fDUE1HպSHHdH%(HD$1HHH$DH=HH$Ht1H{HH1H59a1 HT$dH+%(uH[]HUDAWAVIAUIATIUSHLH(H@dH%(HD$1HL$HT$|t8HD$LHD$dH+%(H(L[]A\A]A^A_f.I|$@LHKHCHHD$I|$@HE1Hp1#HT$HCHr HeHtI|$@0HT$HJ(HC(HHH9HyfHH|uDzMcII|$@LL1HHT$HC8HJ(H1Ht4E1DI|$@J,8IHT$HEHB(J48HC8HuHHC0B0Hj8EC@H5Ht}(I|$@H5HCHMt@E1@@D@0H=GLX8H5@HEH=8At"H=3EtAH=(L*IELP(L#MtMHVASWH=$APE1p QpHI^AUP1HPE1Ay(MHEfDHT$HZHrHtI|$@qHT$HCǃaHI|$@HuHPvLH=W1uǃfDLH=* L]t)fASHH 11[ff.@AUIATI1UHSHLHH@Ht#H1LH[]A\A]H}@HLE1[H H5]]A\A]fAUATIUHHSHHdH%(HD$1~H5/HtIHI HcPHH?L,HD$(PfH@HEu|HcxIHHE|HMJ}PIuH EIMXLt$@ME`EHAU EMPLAPyHD$HmPXYIHXHHHc 1LM1LL4H PIH HHHc 1VH=٢tpLHHD$t^H%I?HT@HD$0HHT$8HT$HT$1HH|$HT$0HHLD$8HD$HL$tHHsMU(MM8LEE@IUVHt$0VQLAVHt$(H|$(AH EHEEhHcPIEHRHHI}HH5wu APAALHyB06fIxUHHHtM 9xE1H$H dH+%(HX []A\A]A^A_HxfDIGHHLHHt\Hc<1xS 1f.HxIHuIGHHxxE.f.HME1HvPH=hu1[]f.HuIGHHx#@ILL MtbIHtVILL$tGE1L LLL$bLIHHL$H5 vIuHL$IHSAVME1P*1H={tAYAZyfHt$(I?#I?LHI?HHCA}lHCt HI81LIUpHt;u7mME1HҝH=sDXHSRP1DdY^HDXIEx+HHHt#Ic xHxeAuME1H8R$H=WsP1A[X@IHtHHtD 9x<;@IGHHuIGHH Ht 9yH xuHME1HPPDIH0HH 9HME1HtPPHME1HP H=*rP1AZ1A[@IGHHlHHHc<1 1DZHME1H@H=qSPHD$pHHEQAPATP1H0HgHHDHME1H9H="qSPHD$pHHLPAPATP1H0DH'xaIGHHIGH HxBIGHHIGH II?ML HH{sDIGH IGH HPATDMPE11vH=oxXZ@IGHHHIGHH Ht  9?H {fIGHHlHH<DHIGHHsIG_fIGHHIGxIGHHyHHyIcˀ< l Kf.HME1HjMP[IGHH H{Hc<1nH@  08DIGHH H[Hc<1NH@  0fDIGHHIGHH Ht  9H KfIGHH H_<PIGHHHHI<xIGHH&IGH IGHHIGhIGHP HIcˀ< H@ IGHH Ht<wf.AWAVAUATUSHH $HH $HHH-HdH%(H$8 1HcEH8L,HHHD$(HD$2K|H{IQI|H mI?HKHIPI88XMIEHt 8UIHHHHc 1t-HME1HMPH=k1{_AX1H$8 dH+%( HH []A\A]A^A_DLHT$(LIHD$(HWLHSLC0MIMLDǃHcUI^H5HHRFLt$ Lt$ I?LzIH8LHSLC0LIMǃHcUIH6HH{+HUMPH NE1At$HH={jP1H :HHIE1HLKP;@HWxHQKUME1A@H=iP1xA[XMuUIx.HEHHt&Hc 1xf.Hx'I? fII@I8HD$0Ht"HI1LLT$H$@LT$H$HIrLK8DC@HK(HSLT$LVHt$(VLP֓LT$ H tyUIH~HHHc 1At$HME1HNJPfDHcUIL$LHt$I?0L$I8IIRfUPHJMPE1&HpxFH7xIGHH=IGH 0HuIGHHu IGH x@IGHHIGHH HtHME1HHH=JgP1AYAZfDUIHHH!Hc 1HME1HJAP H=fA8P1gPH=Y18XZMEVHE9HHH-Ic f.H{HH5ZHH0H5ZH{H0DH{OHSH5`ZHH0=H5QZH{H0DHEHHH8JHf.HEHHHEHH Ht H f.HxnH} JfII@H8HD$0Ht"HI1HLT$H$LT$H$HIrLK8DC@HK(HSLT$HVHt$0VLPLT$ H AVH HHHHc 1&AuHIE1H<{PfDAVPH<IPE1fDHEHHHEH fDIcVL,$IHHHH HAHEHP HwIc̀< jH@ ADHEHH H<yIcVHL$LHt$ H}L$IH8IBH;DIE1L$H=Ut$P1GAXEfAYHL$GHE,Hx HEHHHEH Hx(HEHHHEH HEHHHHtf<xPJHEHHHHtkHc<1xb 1fHuHEHHu HEH x@HuHEHHu HEH x@HHHHAVIPE1jH=SAuHHD$00Hc;P1cH0;HIE1HD8DҾmPH=S1-A_X]DHEHx HH t@HuHEHHu HEH x@HEHHHHIc<1 1L$HAVIPHA9E1jH=RAuHLT$ A2P1GH0fDHEHHHHAIcʀ< 4 HEHHqHHHc<1 1HEHH HIc<1H@  0HEHHHEHP HtIc H HEHHEHEH 8HEHHdHEHH HC_2HEHP HTIcʀ< GH@ HEHHHEWHEHH H<-HEHH HHc<1H@  0DHEHH HHc<1H@  0U=ff.fAWAVAUATUSHH $HH $H8H_zHdH%(H$( 1HcCH8L4HL=fDHEHHuHEHH Ht Hc 1yH @xHIE1Hk6MPHQ5SIE1@$H=TLP1ѼAYAZXSPH5IPE1DHcSHL$LHt$H}跻L$IH8ICHE1IH4H=K*P1,_AXl@HzxSfDHEHH-HHtP18XZ%IEHHHH:Hc<1- 1IEHH-HHHc<1 1IEHHIEH IEHHHHHc<1 1TIEHH HHc<1H@  0>IEHHpIEH cIEHHgIEH ZIEHH HCHc<16H@  0IEHH HtHc<1EIEHH HtHc<1uH@  0q~ff.AWAVAUATUSHH $HH $H8HdH%(H$( HfH8Hc@L4HHHD$HD$K|H{H1IL=*H fH}LHIH88MIHt 8HePH~HuHHrHc 1ct.HIE1H*=PH=;1&AZA[1H$( dH+%( H8 []A\A]A^A_LHT$H萫IHD$HHeA<$PHH`8HIHH,Hc 1IVHD$ H$HtILHHþHIFLK8DC@HK(HSPHLHD$ Pt$deH uvHcdPHHHHHc 1@HHSDKxLLD$IdHcPHHTHM HHaHc 1RH觯 DHHIE1H'P@H7xIE1H!cH=E9PHx'@P1販XZMHbPHx*HHHt"Hc 1xfDHxH} ҧfH|$ II@H8H<$HtI1HHD$zL\$HICLK8DC@L\$HK(LHHSPHD$ Pt$cL\$(H HbDPHEHDHHIc QHAuHIE1H&t$DP21H=7>H 1fDHcPHL$LHt$H}?L$H8IISC(HoH0HLcB4@@~p觥HIE1H5`VPH'vAuHP1H=6nH`HH PfHȅH\H HHc 1HPIE18H'~PH=_61ݦH @H5`IE1VPH%EPtH xHxXHxHEHHHEH HIE1H$$H=5P1 A^XDHEHHwHEHH HtHc 1vH HEHHHEfDHEHHHH!Hc<1 1f.HuHEHHu HEH xft$ZIE1H$H=4P1 ^_5D0HLH0HHc4>@@迢IE1H5]VPH$oAuHt$PH#ATIE1PN1H=3gAXAYfDHEHHvHHIcʀ<  HuHuHHu HEH DxHx7HuHHHHhost - weird...?AH01691: auth_ldap authenticate: using URL %sauth_ldap authenticate: final authn filter is %sAH01694: auth_ldap authenticate: user %s authentication failed; URI %s [%s][%s] (not authoritative)AH01695: auth_ldap authenticate: user %s authentication failed; URI %s [%s][%s]AH01696: auth_ldap authenticate: REMOTE_USER was to be set with attribute '%s', but this attribute was not requested for in the LDAP query for the user. REMOTE_USER will fall back to username or DN as appropriate.AH01697: auth_ldap authenticate: accepting %sAH01698: auth_ldap authorize: no sec->host - weird...?AH01699: ldap authorize: Userid is blank, AuthType=%sAH01700: ldap authorize: Creating LDAP req structureAH01701: auth_ldap authorise: User DN not found, %sAH01702: auth_ldap authorize: require user: user's DN has not been defined; failing authorizationAH02585: auth_ldap authorize: require user: Can't evaluate expression: %sAH01703: auth_ldap authorize: require user: authorization successfulAH01704: auth_ldap authorize: require user: authorization failed [%s][%s]AH01705: auth_ldap authorize: require user: authorization successfulAH01706: auth_ldap authorize: require user: authorization failed [%s][%s]AH01707: auth_ldap authorize user: authorization denied for user %s to %sAH01708: auth_ldap authorize: no sec->host - weird...?AH01709: ldap authorize: Userid is blank, AuthType=%sAH01710: ldap authorize: Creating LDAP req structureAH01711: auth_ldap authorise: User DN not found, %sAH01712: auth_ldap authorize: require group: user's DN has not been defined; failing authorization for user %sAH02586: auth_ldap authorize: require group: Can't evaluate expression: %sAH01713: auth_ldap authorize: require group: testing for group membership in "%s"AH01714: auth_ldap authorize: require group: testing for %s: %s (%s)AH01715: auth_ldap authorize: require group: authorization successful (attribute %s) [%s][%d - %s]AH01719: auth_ldap authorize: require group "%s": didn't match with attr %s [%s][%d - %s]AH01716: auth_ldap authorise: require group "%s": failed [%s][%d - %s], checking sub-groupsAH01717: auth_ldap authorise: require group (sub-group): authorisation successful (attribute %s) [%s][%d - %s]AH01718: auth_ldap authorise: require group (sub-group) "%s": didn't match with attr %s [%s][%d - %s]AH01720: auth_ldap authorize group: authorization denied for user %s to %sAH01721: auth_ldap authorize: no sec->host - weird...?AH01722: ldap authorize: Userid is blank, AuthType=%sAH01723: ldap authorize: Creating LDAP req structureAH01724: auth_ldap authorise: User DN not found with filter %s: %sAH02587: auth_ldap authorize: require dn: Can't evaluate expression: %sAH01725: auth_ldap authorize: require dn: user's DN has not been defined; failing authorizationAH01726: auth_ldap authorize: require dn: authorization successfulAH01727: auth_ldap authorize: require dn "%s": LDAP error [%s][%s]AH01728: auth_ldap authorize dn: authorization denied for user %s to %sAH01729: auth_ldap authorize: no sec->host - weird...?AH01730: ldap authorize: Userid is blank, AuthType=%sAH01731: ldap authorize: Creating LDAP req structureAH01732: auth_ldap authorise: User DN not found with filter %s: %sAH01733: auth_ldap authorize: require ldap-attribute: user's DN has not been defined; failing authorizationAH02588: auth_ldap authorize: require ldap-attribute: Can't evaluate expression: %sAH01734: auth_ldap authorize: checking attribute %s has value %sAH01735: auth_ldap authorize: require attribute: authorization successfulAH01736: auth_ldap authorize: require attribute: authorization failed [%s][%s]AH01737: auth_ldap authorize attribute: authorization denied for user %s to %sAH01738: auth_ldap authorize: no sec->host - weird...?AH01739: ldap authorize: Userid is blank, AuthType=%sAH01740: ldap authorize: Creating LDAP req structureAH01741: auth_ldap authorise: User DN not found with filter %s: %sAH01742: auth_ldap authorize: require ldap-filter: user's DN has not been defined; failing authorizationAH02589: auth_ldap authorize: require ldap-filter: Can't evaluate require expression: %sAH01743: auth_ldap authorize: checking filter %sAH01744: auth_ldap authorize: checking dn match %sAH01745: auth_ldap authorize: require ldap-filter: authorization successfulAH01746: auth_ldap authorize: require ldap-filter: %s authorization failed [%s][%s]AH01747: auth_ldap authorize: require ldap-filter: authorization failed [%s][%s]AH01748: auth_ldap authorize filter: authorization denied for user %s to %sURL to define LDAP connection. This should be an RFC 2255 compliant URL of the form ldap://host[:port]/basedn[?attrib[?scope[?filter]]].
  • Host is the name of the LDAP server. Use a space separated list of hosts to specify redundant servers.
  • Port is optional, and specifies the port to connect to.
  • basedn specifies the base DN to start searches from
  • Attrib specifies what attribute to search for in the directory. If not provided, it defaults to uid.
  • Scope is the scope of the search, and can be either sub or one. If not provided, the default is sub.
  • Filter is a filter to use in the search. If not provided, defaults to (objectClass=*).
Searches are performed using the attribute and the filter combined. For example, assume that the LDAP URL is ldap://ldap.airius.com/ou=People, o=Airius?uid?sub?(posixid=*). Searches will be done using the filter (&((posixid=*))(uid=username)), where username is the user name passed by the HTTP client. The search will be a subtree search on the branch ou=People, o=Airius.DN to use to bind to LDAP server. If not provided, will do an anonymous bind.Password to use to bind to LDAP server. If not provided, will do an anonymous bind.Set to 'on' to return failures when user-specific bind fails - defaults to on.Set to 'on' to set the REMOTE_USER environment variable to be the full DN of the remote user. By default, this is set to off, meaning that the REMOTE_USER variable will contain whatever value the remote user sent.Override the user supplied username and place the contents of this attribute in the REMOTE_USER environment variable.Set to 'on' to force auth_ldap to do DN compares (for the "require dn" directive) using the server, and set it 'off' to do the compares locally (at the expense of possible false matches). See the documentation for a complete description of this option.Attribute labels used to define sub-group (or nested group) membership in groups - defaults to member and uniqueMemberLDAP objectClass values used to identify sub-group instances - defaults to groupOfNames and groupOfUniqueNamesMaximum subgroup nesting depth to be evaluated - defaults to 10 (top-level group = 0)A list of attribute labels used to identify the user members of groups - defaults to member and uniquememberIf set to 'on', auth_ldap uses the DN that is retrieved from the server for subsequent group comparisons. If set to 'off', auth_ldap uses the string provided by the client directly. Defaults to 'on'.Determines how aliases are handled during a search. Can be one of the values "never", "searching", "finding", or "always". Defaults to always.Character set conversion configuration file. If omitted, character set conversion is disabled.The prefix to add to environment variables set during successful authorization, default 'AUTHORIZE_'Set to 'on' to perform the initial DN lookup with the basic auth credentials instead of anonymous or hard-coded credentialsThe regex and substitution to determine a username that can bind based on an HTTP basic auth usernameSet to 'on' to perform authorization-based searches with the users credentials, when this module has also performed authentication. Does not affect nested groups lookup.Set to 'on' to perform authorization-based compares with the users credentials, when this module has also performed authentication. Does not affect nested groups lookups.ISO-8859-1accept-languageAUTHORIZE_AUTHENTICATE_neveroffsearchingfindingalwaysonlocalhostuidobjectclass=*not using SSLsubtreebaseonelevelunknown(null) NONESTARTTLSldapsmod_authnz_ldap.c'exec:util_ldap.cutf-8uldap_connection_closeuldap_connection_finduldap_cache_comparednuldap_cache_compareuldap_cache_checkuseriduldap_cache_getuserdnuldap_ssl_supporteduldap_cache_check_subgroups0ldapauthnldap-userauthzldap-groupldap-dnldap-attributeldap-filternone(&(%s)(%s=*()\AH02558: no AuthLDAPURLLDAP_BINDASUSERmemberuniqueMembergroupOfNamesgroupOfUniqueNamesAuthLDAPBindDNAuthLDAPBindPasswordAuthLDAPBindAuthoritativeAuthLDAPRemoteUserIsDNAuthLDAPRemoteUserAttributeAuthLDAPCompareDNOnServerAuthLDAPSubGroupAttributeAuthLDAPSubGroupClassAuthLDAPMaxSubGroupDepthAuthLDAPGroupAttributeAuthLDAPGroupAttributeIsDNAuthLDAPDereferenceAliasesAuthLDAPCharsetConfigAuthLDAPAuthorizePrefixAuthLDAPInitialBindAsUserAuthLDAPInitialBindPatternAuthLDAPSearchAsUserAuthLDAPCompareAsUser;fj8 jP@nh`no@oo`p q@rl@tu`u<ut@vzz40{`|~D`\@p8Ы  zRx $epFJ w?:*3$"Dh\h`tlHL lD]K JJdm!m\Hx H S@mBDD g DBI X CBC D KBO (