[Date Prev][Date Next] [Chronological] [Thread] [Top]

Security Strength Factor

To: openldap-software@OpenLDAP.org
Subject: Security Strength Factor
From: Dieter Kluenter <dieter@incode.com>
Date: Wed, 18 Dec 2002 11:20:17 +0100
User-agent: Gnus/5.090005 (Oort Gnus v0.05) XEmacs/21.4 (Informed Management, i686-pc-linux)

Hello,
what is the precise definition of SSF, I know it "indicates a relative
strength of protection", but protection of what and protection by
whom?
To be more precise, I understood that a SASL SSF: 56 indicates DES
encrytion as used by kerberos when applying sasl mechanism GSSAPI, but
a sasl mechanism EXTERNAL results in SASL SSF: 0 as following examples
indicate

-.-.-.-.-.-.-.-.--.-.-.-.-
SASL/GSSAPI authentication started
SASL username: dieter@AVCI.DE
SASL SSF: 56
SASL installing layers
.-.-.-.-.-.--.-.-.-.-.-.-.-..--
-..-.-.-.-.-.-.--.--.-.-.-.-.-.--.-.-.
SASL/EXTERNAL authentication started
SASL username: Email=dieter@l4b.de,CN=Dieter Kluenter\2Cou=partner\2Cou=users\2Co=avci\2Cc=de,OU=ldapclient,O=avci,L=Hamburg,ST=Germany,C=DE
SASL SSF: 0
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-

How is SSF:0 interpreted in above example?

-Dieter


-- 
Dieter Kluenter  | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter@schevolution.com
http://www.schevolution.com/tour

Follow-Ups:
- Re: Security Strength Factor
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: ::beat head here:: need help sorting out slapadd
Next by Date: Network logons
Index(es):
- Chronological
- Thread