Jim McCullars wrote:
> I'm in the initial stages of putting up a directory server that will
> include faculty, staff, and students. I want to prevent directory
> trolling by putting a size limit on the number of entries that can be
> returned as the result of a search. I tried setting it from the default
> 2000 to 20 but when I did that, Netscape Console would no longer
> function correctly (I guess because it searched the directory for config
> info),
What console behavior did you see? In what ways would it not function correctly?
> even if I used "cn=Directory Manager" to bind with.
How did you bind with cn=Directory Manager? Directory manager is supposed to be
"immune" to size and time limit restrictions.
You could check the access log of your directory server.
> Is the
> global slapd.conf parameter sizelimit the only way to limit searches?
Yes.
> Can I protect the directory from being trolled (like by someone
> submitting a search of (uid=*)) and still have Netscape Console
> function? I am running 4.13 under Solaris 2.6. Thanks for any advice.
