[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL Confusion

To: openldap-software@OpenLDAP.org
Subject: Re: ACL Confusion
From: mattyml@bellsouth.net
Date: Thu, 20 Feb 2003 21:26:50 -0500 (EST)
In-reply-to: <Pine.GSO.4.53.0302201631290.18485@winnie.matty.com>
References: <Pine.GSO.4.53.0302201631290.18485@winnie.matty.com>

Hi Folks,

I have been toying around a bit more with my ACLs. When I add:

access to *
    by * none

and startup slapd:

Starting OpenLDAP Server: bdb_initialize: Sleepycat Software: Berkeley DB
4.1.24: (September 13, 2002)
bdb_db_init: Initializing BDB database
Backend ACL: access to *
        by * none(=n)

I am still able to perform the following search:

ldapsearch -x -D "" '(cn=*m*)'

Everything is returned. It would look as if slapd is ignoring
the ACls altogether:

=> access_allowed: search access to "dc=test,dc=com" "cn" requested
=> access_allowed: backend default search access granted to ""

Anyone know that I could be missing? I am miffed and prob doing
something stupid :(

Thanks,
- Ryan

Follow-Ups:
- Re: ACL Confusion
  - From: mattyml@bellsouth.net

References:
- ACL Confusion
  - From: mattyml@bellsouth.net

Prev by Date: RE: 2.1.12 result.c goto leave ?
Next by Date: what's the purpose?
Index(es):
- Chronological
- Thread