X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fslapd.conf;h=f7f251113d7088dfc1fc4fe79a01bf792e0fec25;hb=88e2a06b5e9c1fddd93280ffbe4dbc79c8035afb;hp=bf6f611aa578148f891573458de315affa62f0ce;hpb=1cc7b10b7aa5e795bed814f15e2a9627dd88d469;p=openldap

diff --git a/servers/slapd/slapd.conf b/servers/slapd/slapd.conf
index bf6f611aa5..f7f251113d 100644
--- a/servers/slapd/slapd.conf
+++ b/servers/slapd/slapd.conf
@@ -1,4 +1,3 @@
-# $OpenLDAP$
 #
 # See slapd.conf(5) for details on configuration options.
 # This file should NOT be world readable.
@@ -11,8 +10,8 @@ include		%SYSCONFDIR%/schema/core.schema
 # service AND an understanding of referrals.
 #referral	ldap://root.openldap.org
 
-pidfile		%LOCALSTATEDIR%/slapd.pid
-argsfile	%LOCALSTATEDIR%/slapd.args
+pidfile		%LOCALSTATEDIR%/run/slapd.pid
+argsfile	%LOCALSTATEDIR%/run/slapd.args
 
 # Load dynamic backend modules:
 # modulepath	%MODULEDIR%
@@ -43,10 +42,11 @@ argsfile	%LOCALSTATEDIR%/slapd.args
 #	by users read
 #	by anonymous auth
 #
-# if no access controls are present, the default policy is:
-#	Allow read by all
+# if no access controls are present, the default policy
+# allows anyone and everyone to read anything but restricts
+# updates to rootdn.  (e.g., "access to * by * read")
 #
-# rootdn can always write!
+# rootdn can always read and write EVERYTHING!
 
 #######################################################################
 # ldbm database definitions