mreynolds / 389-ds-base

Forked from 389-ds-base 6 years ago
Clone
Source Code
GIT

b3b0217 Bug 588791 - Allow anonymous rootDSE access only

Authored and Committed by nkinder 13 years ago
raw patch tree parent
7 files changed. 86 lines added. 20 lines removed.
ldap/servers/slapd/bind.c
file modified
+4 -3
ldap/servers/slapd/connection.c
file modified
+14 -4
ldap/servers/slapd/extendop.c
file modified
+1 -1
ldap/servers/slapd/libglobs.c
file modified
+49 -11
ldap/servers/slapd/saslbind.c
file modified
+1 -1
ldap/servers/slapd/search.c
file modified
+12 -0
ldap/servers/slapd/slap.h
file modified
+5 -0 
    Bug 588791 - Allow anonymous rootDSE access only
    
    This patch changes the nsslapd-allow-anonymous-access config
    setting to allow a third value that gives anonymous access to
    search the rootDSE.  If you set this attribute to "rootdse", an
    anonymous bind identity is only allowed to do a rootDSE search
    or prove that it is someone other than anonymous.  This also
    required allowing explicit anonymous BIND operations through since
    ldapsearch performs an explicit bind before searching.  The old
    behavior with the "on" and "off" settings remains unchanged.
file modified
+4 -3
file modified
+14 -4
file modified
+1 -1
file modified
+49 -11
file modified
+1 -1
file modified
+12 -0
file modified
+5 -0
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.