On Tue, 2007-02-27 at 14:11 -0700, Richard Megginson wrote: > Andrew Bartlett wrote: > > <snip> > > A few things would be useful: > > > > Firstly, for the path to the ldapi socket to be part of the inf file, so > > I can make it identical between the two supported servers (just makes my > > life easier). > > > > If I can't get that, then I need to be able to modify the dse.inf before > > it starts. > > > > Slightly adjunct to this, i need a way to prevent the DS from binding to > > anything except the unix domain socket (for security). ie, no IPv4 > > ports. > > > > For the ds to be configured, but not started, so I can can copy out the > > default schema, and replace it with just the core schema, and samba4's > > schema. > > > ds_newinst requires the server to be started to add the default acis in > cn=config, cn=schema, cn=monitor and elsewhere. So if the server is not > started by ds_newinst, these acis will not be present, and the server > will have no access except for read only access to the root DSE. Is > this ok? I'll live. Any progress on the other parts of this (ServerPort 0, ldapi path specification)? Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc. http://redhat.com
Attachment:
signature.asc
Description: This is a digitally signed message part
-- Fedora-directory-devel mailing list Fedora-directory-devel@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-devel
