[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: tls

To: Christian Bösch <boesch@fhv.at>
Subject: Re: tls
From: Howard Chu <hyc@symas.com>
Date: Tue, 09 Nov 2010 18:50:03 -0800
Cc: openldap-technical@openldap.org
In-reply-to: <CA698B77-AABF-4B47-A9BB-B61AF623B33D@fhv.at>
References: <CA698B77-AABF-4B47-A9BB-B61AF623B33D@fhv.at>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:2.0b8pre) Gecko/20101024 Firefox/4.0b8pre SeaMonkey/2.1b2pre

Christian Bösch wrote:

Hi

Can someone tell me if it's possible to require strong encryption like TLS
except from one IP address?

Not exactly. The "require" directive doesn't have that level of granularity,but you can use ACLs to restrict access. In that case, a user would be able toconnect without TLS, but wouldn't be able to access anything.


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Follow-Ups:
- Re: tls
  - From: Christian Bösch <boesch@fhv.at>

References:
- tls
  - From: Christian Bösch <boesch@fhv.at>

Prev by Date: olcDbURI error
Next by Date: Re: tls
Index(es):
- Chronological
- Thread