[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: granting/denying access based on client ip address

To: openldap-software@OpenLDAP.org
Subject: Re: granting/denying access based on client ip address
From: 520052027732-0001@t-online.de (Waldemar Brodkorb)
Date: Tue, 7 Aug 2001 14:31:38 +0200
Content-disposition: inline
In-reply-to: <20010807021219.49311.qmail@web20205.mail.yahoo.com>
References: <20010807021219.49311.qmail@web20205.mail.yahoo.com>
User-agent: Mutt/1.3.20i

Hello Stanley,

* Stanley wrote:

> hi , everybody
> 
> IS there a way to grant/deny access to your ldapserver
> 
> based on client ip address??

TCPwrappers!
> 
> - TCPwrappers:

[some text about tcpwrapper]
> 
> TCPwrappper is not such a good idea since it means
> that you don't have a standalone slapd daemon , thus 
> performance goes down.

If your slapd is compiled against libwrap you can use 
IP-based ACL's without inetd!

ldd `which slapd`|grep libwrap
        libwrap.so.0 => /lib/libwrap.so.0 (0x4025f000)

-- 
bye

Waldemar

References:
- granting/denying access based on client ip address
  - From: Stanley Ho <ho_open_ldap@yahoo.com>

Prev by Date: no pthreads on RH 7.0
Next by Date: Time CPU
Index(es):
- Chronological
- Thread