[Date Prev][Date Next] [Chronological] [Thread] [Top]

Solved: Re: Possible ACL Issue while try to read Root DSE

Hi @all & thanks for your help!

Am 29.11.2011 12:28, schrieb Axel Birndt:

Am 29.11.2011 10:10, schrieb Ondrej Kuznik:

On 11/29/2011 09:13 AM, Axel Birndt wrote:
You should expect a response exactly like this (unless your database
suffix is set to ""):

ldapsearch -x -D "" -s base -b "" -h localhost

ldapsearch -x -D "" -s base -b "" -h localhost

Now its working for me. I added the following ACL's in


{0}to dn.base="" by * read
{1}to dn.base="cn=schema,cn=config" by * read
{2}to dn.base="cn=Subschema" by * read

But, does the first rule meaning, that everone could read all in this frontend??

Is this security conform? Or it is better to allow only authenticated Users to read this?

Are there any best practices for this?


Gruß Axel