[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Regarding access control

To: Nisha P Kurur <nisha@lantana.tenet.res.in>
Subject: Re: Regarding access control
From: Aaron Richton <richton@nbcs.rutgers.edu>
Date: Wed, 12 Jul 2006 09:08:14 -0400 (EDT)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <Pine.LNX.4.60.0607121136220.17616@lantana.tenet.res.in>
References: <Pine.LNX.4.60.0607121136220.17616@lantana.tenet.res.in>

I'm using openldap-2.0.27-8 (which comes along with RedHat 9). I'm trying to

You're using historic software with known bugs; that's a big mistake if you care about data integrity and reliability. You'd be well advised to look into the latest OpenLDAP version.

access to * by peername=10.6.21.* write


To get what it appears you desire, you likely want <style> of regex. See
http://www.openldap.org/lists/openldap-software/200401/msg00170.html
for example.

If you follow the advice of upgrading to the latest OpenLDAP version, you can use

"peername.ip=10.6.21.0%255.255.255.0"

which likely will result in performance improvements (no need to run the regex engine on everything). This is (a very small) one of the hundreds of enhancements available since 2.0.

Follow-Ups:
- Re: Regarding access control
  - From: Nisha P Kurur <nisha@lantana.tenet.res.in>

References:
- Regarding access control
  - From: Nisha P Kurur <nisha@lantana.tenet.res.in>

Prev by Date: Regarding access control
Next by Date: Re: Regarding access control
Index(es):
- Chronological
- Thread