On 10/09/2010 05:23 AM, Craig White wrote: > access to * > by anonymous auth > by self write > by * read Just in case someone comes across this in the archives and doesn't read the entire thread: NEVER ALLOW "access to * by self write". NEVER! If you allow DNs to write to their own attributes, your users can change their uidNumber to 0 and become root. -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
