directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefan Seelmann <seelm...@apache.org>
Subject Re: ApacheDS 1.5.5 anonymous access
Date Wed, 28 Oct 2009 19:43:26 GMT
Hi Emmanuel,

Emmanuel Lecharny wrote:
>>
>> Although the flag in <ldapServer> is set to "false" anonymous access
>> works. In fact, changing this flag has no effect.
> 
> AFAIR, only one of the two flags is useful. We must remove the other one.

OK.

But what about the default? Should anonymous access be enabled or
disabled by default? IMO it should be disabled.

>> 2nd:
>> When binding as anonymous one could make modifications to the server
>> (add, modify, delete)! Is this intended?
> 
> Well, why not ?

Ok, you are right. Why not. I think I was a bit surprised because other
servers don't allow write access for anonymous (at least by default).

Kind Regards,
Stefan


Mime
View raw message