Users of slapd/slurpd should note that many files (including replication, log, and temporary files) may contain sensitive information and hence should be kept in directories with limited read/write/execute access. You may, in addition, want to modify startup scripts of slapd and slurpd to use umask(1) to change the default file creation mask prior to start up. Kurt