hi carsten, On Fri, Aug 21, 2015 at 07:10:09AM +0200, Carsten Czerner wrote: > I understand your points. But is it the best way to start with low security > and hope that the administrator knows exactly what to do, like me ;)? > > I thing its a better way to start with a strong security and adapt it to > your > needs (make it less secure) when you need it. An LDAP server is like a > database for me, when you whant to access any kind of data you better > setup the permissions first.
I agree in general, the point I was just trying to make is not so much one of "higher" or "lower" default security, but a trade-off between two problems: either having default access for everyone to data you may not want them to have access to, or having to proliferate a high-value password all over the place. choose your poison :) regards robert -- Robert Lemmen http://www.semistable.com
signature.asc
Description: Digital signature
