On Fri, Mar 12, 2004 at 09:00:35PM -0400, Ace Suares wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > > Hmm... my ldappassword file is root.root 700 but I don't get that error... > > How come ? >
Different OpenLDAP ACLs? If ldappassword is not readable you end up with a anonymous connection. The error comes only if the search for "(objectclass=*)" with basedn set to the group dn and scope base returns nothing. So if you allow anonymous access to return e.g. mail then you end up in much freakier case where mails are injected without recipients. -- :wq Claudio
