[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How can I limit in-bound connection of rootdn account to a specific ip address range?



Well you could use a {SSHA} hash, or Kerberos, to avoid a clear-text
password in the slapd.conf file.

I am not sure that there is a way to IP restrict the rootdn, since by its
nature it circumvents all ACLs.

Allan

On Wed, 16 Apr 2003, Ming Deng wrote:

> I don't feel secure enough about the rootpw in slapd.conf file. It is
> vulnerable to password cracker. Is there any way I can limit the access
> to rootdn, like an ip address range or even localhost?
>
> Ming