Hi Emmanuel, Emmanuel Lecharny wrote: >> >> Although the flag in <ldapServer> is set to "false" anonymous access >> works. In fact, changing this flag has no effect. > > AFAIR, only one of the two flags is useful. We must remove the other one.
OK. But what about the default? Should anonymous access be enabled or disabled by default? IMO it should be disabled. >> 2nd: >> When binding as anonymous one could make modifications to the server >> (add, modify, delete)! Is this intended? > > Well, why not ? Ok, you are right. Why not. I think I was a bit surprised because other servers don't allow write access for anonymous (at least by default). Kind Regards, Stefan
