[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: forcing user to use strong auth

To: Beast <beast@setuid.com>
Subject: Re: forcing user to use strong auth
From: Adam Williams <awilliam@whitemice.org>
Date: 14 Feb 2003 07:19:50 -0500
Cc: "OpenLDAP.org" <openldap-software@OpenLDAP.org>
In-reply-to: <3.0.1.32.20030214184527.00db3d10@pop.rad.net.id>
References: <3.0.1.32.20030214141841.00db3d10@pop.rad.net.id> <3.0.1.32.20030214141841.00db3d10@pop.rad.net.id> <3.0.1.32.20030214184527.00db3d10@pop.rad.net.id>

>>>How to force user to user encrypted session only (never allow plain mode)?
>>>forcing means on the server side, not client side.
>>The ssf ACL directive amd maybe the "disallow bind_simple"
>Sorry, the subject is incorrect, it should be "..use encryption".
>If this directory mainly used for domain authentication (using pam and
>samba) also use for pop3/imap what is recomended setup, using ssl or tls?
>how many mail client support for tls?
>Thanks. 

>From the slapd.conf man page...

security <factors>
     Specify  a set of factors (separated by white space) to require.
     An integer value is associated with each factor and  is  roughly
     equivalent  of the encryption key length to require.  A value of
     112 is equivalent to 3DES, 128 to Blowfish, etc..  The directive...

References:
- forcing user to use strong auth
  - From: Beast <beast@setuid.com>
- Re: forcing user to use strong auth
  - From: Beast <beast@setuid.com>

Prev by Date: Re: forcing user to use strong auth
Next by Date: Re: objectClasses and migrating to 2.1.x
Index(es):
- Chronological
- Thread