[Date Prev][Date Next] [Chronological] [Thread] [Top]

simple bind confusion



Hi,

I have a bunch of servers with various services all talking
back to ldap eg cyrus imap, apache, sendmail etc etc. Is it
better practice to have all these services binding with an
admin account first or allowing an anonymous or no password
bind instead ? 

I've gone with having each system do an admin bind but it
concerns me that i have the admin username and password on
each system. If any of my systems are compromised then i'm in
trouble ? 

Any input would be appreciated. 


Gordon.