[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: LDAP search without credetials

hi carsten,

On Fri, Aug 21, 2015 at 07:10:09AM +0200, Carsten Czerner wrote:
> I understand your points. But is it the best way to start with low security
> and hope that the administrator knows exactly what to do, like me ;)?
> I thing its a better way to start with a strong security and adapt it to
> your
>  needs (make it less secure) when you need it. An LDAP server is like a
>  database for me, when you whant to access any kind of data you better
>  setup the permissions first.

I agree in general, the point I was just trying to make is not so much
one of "higher" or "lower" default security, but a trade-off between two 
problems: either having default access for everyone to data you may not
want them to have access to, or having to proliferate a high-value
password all over the place. choose your poison :)

regards  robert

Robert Lemmen                               http://www.semistable.com 

Attachment: signature.asc
Description: Digital signature

Reply to: