[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How can I limit in-bound connection of rootdn account to a specific ip address range?

To: Ming Deng <mingd@oeone.com>
Subject: Re: How can I limit in-bound connection of rootdn account to a specific ip address range?
From: Allan Streib <astreib@indiana.edu>
Date: Wed, 16 Apr 2003 10:49:23 -0500 (EST)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <3E9D7901.6060606@oeone.com>
References: <3E9D7901.6060606@oeone.com>

Well you could use a {SSHA} hash, or Kerberos, to avoid a clear-text
password in the slapd.conf file.

I am not sure that there is a way to IP restrict the rootdn, since by its
nature it circumvents all ACLs.

Allan

On Wed, 16 Apr 2003, Ming Deng wrote:

> I don't feel secure enough about the rootpw in slapd.conf file. It is
> vulnerable to password cracker. Is there any way I can limit the access
> to rootdn, like an ip address range or even localhost?
>
> Ming

References:
- How can I limit in-bound connection of rootdn account to a specific ip address range?
  - From: Ming Deng <mingd@oeone.com>

Prev by Date: Re: How can I limit in-bound connection of rootdn account to a specific ip address range?
Next by Date: Re: 2.1.17 performance issues
Index(es):
- Chronological
- Thread