Re: Updatedn questions

[John Dalbec <jpdalbec@cc.ysu.edu>]

John Dalbec wrote:
> 
> Andrew Findlay wrote:
> 
> > > > You don't need to do that. updatedn is 'special' in the same way that
> > > > rootdn is special: it can do anything at all to the backend under its
> > > > control.
> 
> Hey, you're right!  I didn't change my ACLs and the update succeeded.

Oops, no it didn't.  I had the wrong hostname which is why I didn't get
a rejectlog, and the -p option to ldapsearch is a no-op so I thought the
slave was updated.  

Developers:  If you're going to deprecate -p, fine, but if it doesn't
work it should spit out an error message instead of being a no-op.  If
you're worried about breaking scripts I guess you could check whether
STDIN is a tty and then decide what to do.  At least put something in
the man page to say that it's broken and not merely deprecated.
> > >
> > > If this is true, then the Admin Guide needs to be updated.
> 
> Would anyone like to take care of this?
> > >
> > > >From the 2.0 Admin Guide:
> > >
> > > 10.4.2. Set up the slave slapd
> > >
> > > ...
> > >
> > >    4.Make sure the DN given in the updatedn directive has permission to
> > > write the database (e.g., it is listed as rootdn or is
> > >      allowed access by one or more access directives).
> >