-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Pierangelo
Masarati
Subnet mask might be an interesting evolution; note that all of this,
at least in my opinion and from my personal experience, should not be
used instead of appropriate authentication.
Indeed. I really cannot see a valid use for fine-grained access control
based on an IP subnet. That is such a huge range of accessors; for such
coarse control you should just use TCP_WRAPPER to permit/deny connectivity
to the server.