[Date Prev][Date Next] [Chronological] [Thread] [Top]

Mac OS X OpenLDAP allows anonymous access to all fields

To: openldap-technical@openldap.org
Subject: Mac OS X OpenLDAP allows anonymous access to all fields
From: "RAT" <robert3t@netzero.net>
Date: Mon, 13 Dec 2010 16:22:44 GMT
Content-disposition: inline
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netzero.net; s=alpha; t=1292257398; bh=47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=; l=0; h=From:Date:To:Subject:Message-Id:Content-Type; b=LsOfyXeFSCGOjnFFThQvZxxH1r/VoIms9Ws36BPPdLXgpUTzsrEW/2XONa7OXHw0l wUkYZMSekx67w/opcf5lmcOjziUUfgRBAhtTjIw35rntKOn1TQGTDRf21pbdK8Unzb 9HVTFKzePacEY5ueKz6E7mq15q/1qZintz5BHORU=

I am experimenting with authenticating users off of OpenLDAP.  The default deployment from Apple seems to be (at least in my case) completely wide open.  I have been trying to find a ACI to block access to the password value.  Does anyone have any good resources on this or, better yet, an ACI I can apply? 


Robert Threet
http://yesistilluseperl.blogspot.com/

____________________________________________________________
Obama Urges Homeowners to Refinance
If you owe under $729k you probably qualify for Obama's Refi Program
http://thirdpartyoffers.netzero.net/TGL3231/4d0648688b054664b76st03duc

Follow-Ups:
- Re: Mac OS X OpenLDAP allows anonymous access to all fields
  - From: Dieter Kluenter <dieter@dkluenter.de>

Prev by Date: Re: push replication with proxy and rwm overlay
Next by Date: Re: Mac OS X OpenLDAP allows anonymous access to all fields
Index(es):
- Chronological
- Thread