Laurence Moore wrote:
I use the following in slapd.conf:
include /etc/openldap/slapd.access.conf
access to *
by self write
by users read
by anonymous auth
That's exactly what we're discussing. If you allow "self" write access
to "*", then users can change their uidNumber attribute, and make
themselves root.
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
