[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: how to verify which clients are using start_tls



At 12:47 PM 2002-10-03, Bradley W. Langhorst wrote:
>I've implemeted an ldap server for
>authentication with libnss-ldap 
>and password changing with libpam-ldap
>
>samba and phpgroupware are also talking authenticating happily.
>
>I'm using "ssl start_tls" instead of "ssl on" because I want to allow
>connections by mail clients, etc for access to non-sensitve information.
>
>I don't want any authenticated access happening in the clear but I don't
>know how to enforce that policy.
>
>any suggestions?

For 2.1, I suggest you read the "Security Considerations" section
of the admin guide...

Kurt