[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: nested/coupled <who> clauses in ACLs

To: "Eric A. Hall" <ehall@ehsco.com>
Subject: Re: nested/coupled <who> clauses in ACLs
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Fri, 08 Jul 2005 21:33:50 -0700
Cc: openldap-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <42CF50D2.5030502@ehsco.com>
References: <42CF3312.2070102@ehsco.com> <B7A4DAA7950F2FDB0AEE1FE3@[0.1.0.4]> <42CF50D2.5030502@ehsco.com>

--On Saturday, July 09, 2005 12:21 AM -0400 "Eric A. Hall" <ehall@ehsco.com> wrote:

On 7/8/2005 11:25 PM, Quanah Gibson-Mount wrote:


--On Friday, July 08, 2005 10:14 PM -0400 "Eric A. Hall"
<ehall@ehsco.com>  wrote:

Let's say that I want to make a group of entries accessible to
anonymous, but only when it is connecting from localhost. EG:

 access to <foo>
   by anonymous(peername.ip=127.0.0.1)   read
   by *                                  none

Did you read the slapd.access manpage?

Yes, and I'm still looking for an answer


The answer is there, if you read it closely enough.

Anyhow, you about have it right.  I use:

access to <foo>
   by peername.ip=127.0.0.1 anonymous read

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

"These censorship operations against schools and libraries are stronger
than ever in the present religio-political climate. They often focus on
fantasy and sf books, which foster that deadly enemy to bigotry and blind
faith, the imagination." -- Ursula K. Le Guin

References:
- nested/coupled <who> clauses in ACLs
  - From: "Eric A. Hall" <ehall@ehsco.com>
- Re: nested/coupled <who> clauses in ACLs
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: nested/coupled <who> clauses in ACLs
  - From: "Eric A. Hall" <ehall@ehsco.com>

Prev by Date: Re: nested/coupled <who> clauses in ACLs
Next by Date: Re: nested/coupled <who> clauses in ACLs
Index(es):
- Chronological
- Thread