[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL to block IPs

To: MS <opensrc_eng@yahoo.co.in>
Subject: Re: ACL to block IPs
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Mon, 17 May 2004 13:05:02 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20040517072339.80249.qmail@web8309.mail.in.yahoo.com>
References: <20040517072339.80249.qmail@web8309.mail.in.yahoo.com>

See slap.access(5) for details.

However, if you truly don't want to give any access to a particular
IP address, I suggest use of IP level filtering (e.g., firewalling)
instead of ACLs.  I note that disabling 127.0.0.1 won't prevent
someone on the box from connecting otherwise.

At 12:23 AM 5/17/2004, MS wrote:
>Hello all,
>I need to have a ACL to block all requests(r/w/s) from my localhost(127.0.0.1)
> 
>Does the following do the expected:
> 
>access to *
>    by peername="ip=127\.0\.0\.1:.+" none
>    ..........................   
>    by *  none
>FYI:i am using ldap 2.1 
>Regards
>Opensrc_eng
>
><http://in.rd.yahoo.com/specials/mailtg/*http://yahoo.shaadi.com/india-matrimony/>Yahoo! India Matrimony: Find your partner <http://in.rd.yahoo.com/specials/mailtg2/*http://yahoo.shaadi.com/india-matrimony/community.php>online.

References:
- ACL to block IPs
  - From: MS <opensrc_eng@yahoo.co.in>

Prev by Date: Re: ActiveDirectory Connector...
Next by Date: Re: Meta Directory err=32 'No Such Object' Returns the Object :-)
Index(es):
- Chronological
- Thread