Lock down the LDAP backend - only samba may read or write
authorAndrew Bartlett <abartlet@samba.org>
Tue, 15 Jul 2008 12:07:45 +0000 (22:07 +1000)
committerAndrew Bartlett <abartlet@samba.org>
Tue, 15 Jul 2008 12:07:45 +0000 (22:07 +1000)
(This used to be commit a3912801fb25f715725c06402d4bdff9a926f15d)

source4/setup/slapd.conf

index b1ce6f6492e189a8a1c8c975bc0d53b80a80d2ed..1dda752af0586ca5e840ca5cc0e38e1b36a8db78 100644 (file)
@@ -32,7 +32,7 @@ access to dn.subtree="cn=samba"
 
 access to dn.subtree="${DOMAINDN}"
        by dn=cn=samba-admin,cn=samba manage
 
 access to dn.subtree="${DOMAINDN}"
        by dn=cn=samba-admin,cn=samba manage
-       by * read
+       by * none
 
 password-hash   {CLEARTEXT}
 
 
 password-hash   {CLEARTEXT}