From f2a87ab4022947f0cd48715d7c37393f0ebfd60a Mon Sep 17 00:00:00 2001
From: neil_a_wilson <neil_a_wilson@localhost>
Date: Sat, 02 Jun 2007 00:27:17 +0000
Subject: [PATCH] Update the server to provide a lockdown mode.  This is a mode in which the server will only allow client connections over loopback interfaces and will reject requests from non-root users.  This can be used in cases where it would be helpful for the server to be online to address a problem, but there might be security risks in having it fully available (e.g., the server detects a malformed access control rule on startup, and we don't want to allow normal access to the server since that rule might be intended to prevent users from seeing sensitive information and not having it interpreted properly could be dangerous).

---
 opends/src/server/org/opends/server/messages/ProtocolMessages.java |    3 ++-
 1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/opends/src/server/org/opends/server/messages/ProtocolMessages.java b/opends/src/server/org/opends/server/messages/ProtocolMessages.java
index 952fa3a..6049cf7 100644
--- a/opends/src/server/org/opends/server/messages/ProtocolMessages.java
+++ b/opends/src/server/org/opends/server/messages/ProtocolMessages.java
@@ -5531,7 +5531,8 @@
                     "The attempt to register this connection with the " +
                     "Directory Server was rejected.  This may indicate that " +
                     "the server already has the maximum allowed number of " +
-                    "concurrent connections established");
+                    "concurrent connections established, or that it is in a " +
+                    "restricted access mode");
 
 
     registerMessage(MSGID_LDAP_CONNHANDLER_DESCRIPTION_LISTEN_ADDRESS,

--
Gitblit v1.10.0