[Date Prev][Date Next] [Chronological] [Thread] [Top]

Different tcp wrapper configuration for ldap and ldaps, possible?

To: openldap-software@OpenLDAP.org
Subject: Different tcp wrapper configuration for ldap and ldaps, possible?
From: Bo Gundersen <bg@atira.dk>
Date: Mon, 05 May 2003 17:44:36 +0200
Organization: Atira Aps
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401

Hi

I have run into a bit of a problem, I have an semi open OpenLdap server which is currently only responding to ldaps, but I would like to open the server for non-ssl connections from a very limited number of hosts.

However I am not sure how to configure this with tcp wrappers. As I understand it, OpenLdap checks the hosts.{allow,deny} files with the name of OpenLdap executable and not the name of the actual protocol (correct?), and it is therefor impossible to have a very open hosts.{allow,deny} for ldaps and a very closed one for ldap.

Is there anyway that I can make OpenLdap use the actual protocol for lookups into hosts.{allow,deny} istead of the executable name? or do I have to run two different OpenLdap servers to make this work?

Thanks in advance :)

--
Bo Gundersen
DBA/Software Developer
M.Sc.CS.
www.atira.dk

Follow-Ups:
- Re: Different tcp wrapper configuration for ldap and ldaps, possible?
  - From: Allan Streib <astreib@indiana.edu>
- Re: Different tcp wrapper configuration for ldap and ldaps, possible?
  - From: "Carl Litt" <carl@execulink.com>

Prev by Date: openldap and firewall-1
Next by Date: create flag not set
Index(es):
- Chronological
- Thread