[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: top level design - Posix groups for rights ?

To: openldap-software@OpenLDAP.org
Subject: Re: top level design - Posix groups for rights ?
From: Theodore Knab <tjk@annapolislinux.org>
Date: Sat, 30 Mar 2002 16:34:23 -0500
Content-disposition: inline
In-reply-to: <1017515567.3ca60e2f99c45@Mail.EnContacto.Net>
References: <20020330183111.GD18244@annapolislinux.org> <20020330184554.GE18244@annapolislinux.org> <1017515567.3ca60e2f99c45@Mail.EnContacto.Net>
User-agent: Mutt/1.3.27i

I have read in a very professional looking document written by Michael
Gettes entitled "A recipe for Configuring and Operating LDAP
directories". It appears there is a reason to use DC over other types
when using a directory. 

He says 
    Imagine I am joe user and I wish to send email to
    gettses@georgetown.edu, securely, using certificates.
    To do so, I must have the cert for gettes@georgetown.edu. How do I
    find it ? Well, with DC naming. my mail client would first look in
    DNS for georgetown.ed and get back the SRV record (see RFC 2782) for
    the LDAP service associated with that domain name. With this, I know 
    who to ask...

> On Sat, Mar 30, 2002 at 11:12:47AM -0800, Edwin Culp wrote:
> I'm not very smart maybe that is why I like simple :-)  What would be 
> the disadvantage to 
> dn: o=washington Collage
> Then add ou=people and/or anything else you might want.

References:
- top level design - Posix groups for rights ?
  - From: Theodore Knab <tjk@annapolislinux.org>
- Re: top level design - Posix groups for rights ?
  - From: Theodore Knab <tjk@annapolislinux.org>
- Re: top level design - Posix groups for rights ?
  - From: Edwin Culp <eculp@encontacto.net>

Prev by Date: Re: SASL Woes
Next by Date: ldapadd: invalid format
Index(es):
- Chronological
- Thread