[Date Prev][Date Next] [Chronological] [Thread] [Top]

ssf settings on server restart



hi,

i have an acl set to allow only some ips to connect unencrypted:
{0}to dn.children="dc=abc,dc=net" by peername.ip=10.10.40.100 read break by peername.ip=10.10.8.49 read break by ssf=128 read break by * none

olcSecurity: ssf=0 tls=0 simple_bind=0 update_ssf=0

this works in general, but if i restart slapd i get from the defined ips from above 'confidentially required'. then i have to set ssf=1 then back to ssf=0 to make
it work again?

anyone an idea why?

/thx.chris


Attachment: smime.p7s
Description: S/MIME cryptographic signature