[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: how to verify which clients are using start_tls

To: "Bradley W. Langhorst" <brad@langhorst.com>
Subject: Re: how to verify which clients are using start_tls
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Fri, 04 Oct 2002 10:18:18 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <1033674467.2995.10.camel@unheq1>

At 12:47 PM 2002-10-03, Bradley W. Langhorst wrote:
>I've implemeted an ldap server for
>authentication with libnss-ldap 
>and password changing with libpam-ldap
>
>samba and phpgroupware are also talking authenticating happily.
>
>I'm using "ssl start_tls" instead of "ssl on" because I want to allow
>connections by mail clients, etc for access to non-sensitve information.
>
>I don't want any authenticated access happening in the clear but I don't
>know how to enforce that policy.
>
>any suggestions?

For 2.1, I suggest you read the "Security Considerations" section
of the admin guide...

Kurt

References:
- how to verify which clients are using start_tls
  - From: "Bradley W. Langhorst" <brad@langhorst.com>

Prev by Date: Re: Documentation translation to french
Next by Date: Re: replication on 2.1.5
Index(es):
- Chronological
- Thread