We just went experienced an unfortunate event last night when we enabled the "disallow bind_anon" flag in out slapd.conf file.
After enabling this flag, we began to experience "weird" problems.
We are running OD,Mail, and Web services.
Rebooting our Panther 10.3.4; the system would come up quickly and normally. However, directory accounts seemed incredibly sluggish. We knew that the accounts were being properly accessed in LDAP because we were able to get our Mail, login, etc.
However, after a period of about 3 to 5 minutes, the server would begin to "degrade." It appeared that Mail performance would drop-off, Server Admin would eventually stop receiving updates, Mail would eventually halt all together, SSH login would stop, etc.
Eventually, SSH would stop responding to even the local NetInfo users. Only the users who were already logged in had control to reboot the server and begin the degrade again.
After turning off disallow bind_anon, the server would function quick and normally.
Has anyone experienced this problem before? Or have any insight as to why requiring authenticated bind could appear to cause such a degrading server?
BTW, we were able to recreate the problem:
We actually rebuilt the server yesterday, applied updates, and then begain rebuilding and turning on the appropriate services.
After turning on the "disallow bind_anon" directive the problems would begin.
Obey