[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS or plain?

To: openldap-software@OpenLDAP.org
Subject: Re: TLS or plain?
From: Beast <beast@setuid.com>
Date: Sat, 19 Jul 2003 14:03:48 +0700
In-reply-to: <8402FBB2B23BA748B4477DEFD383C8B327C7E2@cnfqe058.cnf.prod.cnf.com>
Organization: X-ORG
References: <8402FBB2B23BA748B4477DEFD383C8B327C7E2@cnfqe058.cnf.prod.cnf.com>

Saturday, July 19, 2003, 12:35:42 PM, Tony wrote:

> method=128

> 128 (in decimal) = 80 (in hex)
> which is shown below as 0x80U ... for LDAP_AUTH_SIMPLE

That's I already understand (hopefully :=), but my question is what is
the value for the methods :

1. simple auth connection *with TLS* = ?
2. simple auth connection *with SSL* = ?
3. simple auth connection (without TLS and SSl/plain) = ?
4. strong auth (sasl) connection *with TLS* = ?
etc...

Afaik, "LDAP_AUTH_SIMPLE (128)" is just like specifying option -x (eg.
ldapsearch -x ...) but nothing to do with encryption, or did I missunderstood here?
Tks.


>> # pwd ; grep LDAP_AUTH ldap.h
>> ...../openldap-2.1.22/include
>> #define LDAP_AUTH_NONE  ((ber_tag_t) 0x00U)     /* no 
>> authentication             */
>> #define LDAP_AUTH_SIMPLE        ((ber_tag_t) 0x80U)     /* context 
>> specific + primitive */
>> #define LDAP_AUTH_SASL  ((ber_tag_t) 0xa3U)     /* context specific + 
>> constructed */
>> #define LDAP_AUTH_KRBV4 ((ber_tag_t) 0xffU)     /* means do both of the 
>> following */
>> #define LDAP_AUTH_KRBV41        ((ber_tag_t) 0x81U)     /* context 
>> specific + primitive */
>> #define LDAP_AUTH_KRBV42        ((ber_tag_t) 0x82U)     /* context 
>> specific + primitive */
>> #define LDAP_AUTH_METHOD_NOT_SUPPORTED  0x07
>> #define LDAP_STRONG_AUTH_NOT_SUPPORTED  LDAP_AUTH_METHOD_NOT_SUPPORTED
>> #define LDAP_AUTH_UNKNOWN               0x56



--beast

References:
- RE: TLS or plain?
  - From: "Bennett, Tony - CNF" <Bennett.Tony@cnf.com>

Prev by Date: RE: TLS or plain?
Next by Date: trouble with openldap 2.1.22 and sasl proxy auth
Index(es):
- Chronological
- Thread