We have just started to use deki (9.02) at our institute. As we use LDAP for authentification the anonymous user can see the user names of many users that we have at our site - they are the same names as are used for general login to our site. This does not seem desirable to us as it makes attacks e.g. via ssh a bit easier. Nevertheless would we like to have some top level pages of our deki visible to the world.
Question: can the "list of users" page be allowed only for logged in users? and disallowed for an anonymous viewer?