[Pkg-openldap-devel] [openldap] 01/01: remove default 'by self write' (#761406)
Ryan Tandy
rtandy-guest at moszumanska.debian.org
Sat Sep 13 18:59:24 UTC 2014
This is an automated email from the git hooks/post-receive script.
rtandy-guest pushed a commit to branch master
in repository openldap.
commit 1d124f25f57c5f0dcbe935e1ea796e767e2603bd
Author: Ryan Tandy <ryan at nardis.ca>
Date: Sat Sep 13 11:57:52 2014 -0700
remove default 'by self write' (#761406)
---
debian/changelog | 2 ++
debian/slapd.init.ldif | 1 -
2 files changed, 2 insertions(+), 1 deletion(-)
diff --git a/debian/changelog b/debian/changelog
index b608108..8eb2b94 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -29,6 +29,8 @@ openldap (2.4.39-2) UNRELEASED; urgency=low
* Acknowledge NMU fixing #729367, thanks to Michael Gilbert.
* Offer the MDB backend as a choice during initial configuration. (Closes:
#750022)
+ * debian/slapd.init.ldif: Disallow modifying one's own entry by default,
+ except specific attributes. (Closes: #761406)
[ Jelmer Vernooij ]
* Depend on heimdal-multidev rather than heimdal-dev. (Closes: #745356,
diff --git a/debian/slapd.init.ldif b/debian/slapd.init.ldif
index 6fefcae..d9533c6 100644
--- a/debian/slapd.init.ldif
+++ b/debian/slapd.init.ldif
@@ -76,7 +76,6 @@ olcAccess: to attrs=userPassword,shadowLastChange
by * none
olcAccess: to dn.base="" by * read
olcAccess: to *
- by self write
by dn="cn=admin, at SUFFIX@" write
by * read
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-openldap/openldap.git
More information about the Pkg-openldap-devel
mailing list