[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: StartTLS support for applications



You are also correct, encrypting sendmail queries is not so critical, I
must say that I am a bit paranoid :) What I will anyway do is create an
account for sendmail and let only that sendmail user do queries to the
sendmail DNs on my LDAP server. I know that's supported by Sendmail.

Regards
Marc




                                                                                                                                               
                                                                                                                                               
                    Frank Swasey         To:     marc.bigler@day.com                                                                           
                    <Frank.Swasey@       cc:     openldap-software@OpenLDAP.org                                                                
                    uvm.edu>             Subject:     Re: StartTLS support for applications                                                    
                                                                                                                                               
                    10/18/02 02:15                                                                                                             
                    PM                                                                                                                         
                                                                                                                                               
                                                                                                                                               




Today at 9:52am, marc.bigler@day.com wrote:

> >From what I read from their respective website only Sendmail would not
be
> possible to have an encrypted LDAP session, am I right  ?

I believe you are correct that Sendmail (without source hacking) will
not do an encrypted session.  But, then, why would it?  It is only doing
anonymous queries for specific mail attributes.  Presumably, you are
doing these queries across your internal (presumably private) network
-- so nasty people shouldn't be able to sniff your traffic.

--
Frank Swasey                    | http://www.uvm.edu/~fcs
Systems Programmer              | Always remember: You are UNIQUE,
University of Vermont           |    just like everyone else.
                    === God Bless Us All ===