Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Re: Removing public browse rights

17 views
Skip to first unread message

a...@novell.com

unread,
Dec 16, 2009, 6:08:25 PM12/16/09
to
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yes, the [Public] users cannot browse the tree, but you already know that.
Some Novell products presumably depend on this working (contextless login
in iManager I believe is one) properly so a test environment is highly
encouraged. With that said I know others in here who have run that way
for a while and I also remove [Public] rights (all of them that are
explicitly granted at the tree [root] from my trees and all is well enough.

Good luck.

cperilli wrote:
> Is there any downside to removing the public browse rights? Thanks.
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJLKWhoAAoJEF+XTK08PnB59IsP/0ZgVZHoU6gs22tY+YjDB4mK
USKojtgXjoBNgiMTXI/10OWlR9cFwsjt+oPNxAHfX43UBvpzIF5NdtlI44s2KUjU
iyoxF5ECldWkUp4Tni0wFwaW1TGsxm1ACiqOZrMFtyi2mxnMm9sUZcgCsk3K1wHV
rY7+G1XhlS8c873OkJBVVv9zm2+eTkezGio7CrUjBClWsHA1QCi7mpNK/DJjwzsy
F7S9XMPo+Wj1ZIJhiiia1f8iarPvCKhP4cjwwV5IskHMTdlnsVOoU2lUn8Zhfhyi
CnoS5MDbcCoGfxiGSWQOCiNdXU8TcAdFTO2kxW7zsj4btsBIOpsQatU5L6//VB7h
pasGxm5lfu9L4trlqItXUuw7axHZWkHlzWC6D0SPVhQYfNbvovldw7veVp3rvPfK
7KTaVk4aEl3iLSX2/Kwo+sqBxREB249SlHOhs8xQDPPGMGPdjYCMAYHxoIy+nGDD
yd1n3n12ohRSX+NpwNLlb1BoFQ8OfAt711AA8UiiM1I5ZhV9CN27DhY1JWKWhPdP
jHDXQnGf0cXfL+PW/JZwvB67bx+uiD+RV+fCvUn1ccudicLsVUpYOphMhDw9Uq2z
cti9jHsavSfvlX3H5H2zfVWvsQDIRnvZCE7o3eRXR2OftQK8mL62bkpFJV6iT8Y6
pcMo9AdKoyVaN0LSL6EM
=XgLy
-----END PGP SIGNATURE-----

Peter Kuo

unread,
Dec 16, 2009, 6:53:59 PM12/16/09
to
a...@novell.com wrote:

> (contextless login
> in iManager I believe is one)

Well, anything contextless - including the Client pieces <g>


--


Peter
eDirectory Rules!
http://www.DreamLAN.com

a...@novell.com

unread,
Dec 16, 2009, 7:59:37 PM12/16/09
to
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

But the client pieces use LDAP for their contextless stuff, I believe, and
the LDAP server could easily have a proxy user defined to counter this
change (though it wouldn't make much sense to me to do things that way.

Good luck.

Peter Kuo wrote:
> a...@novell.com wrote:
>
>> (contextless login
>> in iManager I believe is one)
>
> Well, anything contextless - including the Client pieces <g>
>
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=ZRJY
-----END PGP SIGNATURE-----

0 new messages