[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Refusing connections when START_TLS is not sent
Hi,
Pierre Moermans <pmoermans@linuxmail.org> writes:
> Dear list,
>
> As far as I understand, clients using the START_TLS instruction must do
> so on the standard (PLAIN text) port, usually, the port 389.
> I've done that, and it worked fine.
>
> Now, I would like to refuse PLAIN text communication when the START_TLS
> command is not sent by the client. I've been googling for a while with
> no success.
> Does anybody know how to do that ?
TLSVerifyClient demand
See man slapd.conf(5), TLS Options.
-Dieter
--
Dieter Kluenter | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter(at)dkluenter.de
http://www.avci.de