Pass LDAP password filename instead of password itself in *user scripts

This ensures the LDAP password doesn't show up in process table. I was an idiot when I wrote the original code.

adduser

@@ -58,8 +58,7 @@ gidNumber: {uid}'''
         f.write(ldif)
 
     # Add user
-    ret = call(['ldapadd', '-D', 'cn=Manager,dc=exozy,dc=me', '-w',
+    ret = call(['ldapadd', '-D', 'cn=Manager,dc=exozy,dc=me', '-y', '/etc/ldappass', '-f', filename])
-                open('/etc/ldappass', 'r').read(), '-f', filename])
     if ret != 0:
         return
     remove(filename)

deluser

@@ -10,7 +10,7 @@ def deluser(username):
     """Delete a user"""
 
     # Delete from LDAP server
-    run(['ldapdelete', '-w', open('/etc/ldappass', 'r').read(), '-D', 'cn=Manager,dc=exozy,dc=me',
+    run(['ldapdelete', '-y', '/etc/ldappass', '-D', 'cn=Manager,dc=exozy,dc=me',
          'uid=' + username + ',ou=People,dc=exozy,dc=me', 'cn=' + username + ',ou=Group,dc=exozy,dc=me'])
 
     # Cleanup

moduser

@@ -15,8 +15,7 @@ def moduser(username):
         environ['EDITOR'] = 'micro'
     
     if username == 'Manager':
-        run(['ldapvi', '-w', open('/etc/ldappass', 'r').read(),
+        run(['ldapvi', '-y', '/etc/ldappass', '--user', 'cn=Manager,dc=exozy,dc=me'])
-            '--user', 'cn=Manager,dc=exozy,dc=me'])
     else:
         dn = 'uid=' + username + ',ou=People,dc=exozy,dc=me'
         run(['ldapvi', '--user', dn, '--base', dn])