[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS or plain?

To: openldap-software@OpenLDAP.org
Subject: Re: TLS or plain?
From: Beast <beast@setuid.com>
Date: Sat, 19 Jul 2003 09:56:31 +0700
In-reply-to: <3F17EC20.2090505@mailhost.eeigm.inpl-nancy.fr>
Organization: X-ORG
References: <498825748.20030718181451@setuid.com> <3F17EC20.2090505@mailhost.eeigm.inpl-nancy.fr>

Friday, July 18, 2003, 7:46:24 PM, Christian wrote:

> Hi,

> You should take the trace in /var/log/syslog:

> Jul 18 14:36:54 ldapserver slapd[1272]: conn=39 fd=12 ACCEPT from 
> IP=XXX.XXX.XXX.XXX:2024 (IP=XXX.XXX.XXX.XXX:389)
> Jul 18 14:36:54 ldapserver slapd[1273]: conn=39 op=0 BIND dn="" method=128


> And convert the value for "method"
 
> # pwd ; grep LDAP_AUTH ldap.h
> ...../openldap-2.1.22/include
> #define LDAP_AUTH_NONE  ((ber_tag_t) 0x00U)     /* no 
> authentication             */
> #define LDAP_AUTH_SIMPLE        ((ber_tag_t) 0x80U)     /* context 
> specific + primitive */
> #define LDAP_AUTH_SASL  ((ber_tag_t) 0xa3U)     /* context specific + 
> constructed */
> #define LDAP_AUTH_KRBV4 ((ber_tag_t) 0xffU)     /* means do both of the 
> following */
> #define LDAP_AUTH_KRBV41        ((ber_tag_t) 0x81U)     /* context 
> specific + primitive */
> #define LDAP_AUTH_KRBV42        ((ber_tag_t) 0x82U)     /* context 
> specific + primitive */
> #define LDAP_AUTH_METHOD_NOT_SUPPORTED  0x07
> #define LDAP_STRONG_AUTH_NOT_SUPPORTED  LDAP_AUTH_METHOD_NOT_SUPPORTED
> #define LDAP_AUTH_UNKNOWN               0x56


Hi, i'm not programmer, don't ask me to look at the source :=)
however, from the code above, i did not see that connection is encrypted or not, it
just say using -x or using strong auth (sasl), cmiiw.
TIA.



> -- Christian


--beast

References:
- TLS or plain?
  - From: Beast <beast@setuid.com>
- Re: TLS or plain?
  - From: Christian DUCLOU <Christian.Duclou@eeigm.inpl-nancy.fr>

Prev by Date: Re: Error searching DNs with escaped special characters
Next by Date: RE: TLS or plain?
Index(es):
- Chronological
- Thread