On 1/20/2009 3:56 PM, Hill, Brett wrote: > Charles Marcus wrote: >> You should NOT have to authenticate just to do recipient >> validation - if you are, you're doing it wrong. > > There are instances where you DO have to authenticate to do LDAP > lookups. It all depends on whether or not you're using AD, and if so, > how you've configured its securities. AD is, by default, setup to > require authentication for LDAP if I'm not mistaken.
I'm not talking about dumb defaults, I'm talking about a sys admin being able to config his servers properly. It is entirely possible to allow a trusted local server to validate recipients without having to auth and without creating a security problem. -- Best regards, Charles ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
