[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Security between server and client nodes.

To: openldap-technical@openldap.org
Subject: Re: Security between server and client nodes.
From: Raffael Sahli <public@raffaelsahli.com>
Date: Mon, 28 Nov 2011 11:25:16 +0100
In-reply-to: <CAPDKCff_wciCJa=+oEjVozK4RVDkpNyB=-3uYpqKdw7LLS=8_w@mail.gmail.com>
References: <CAPDKCff_wciCJa=+oEjVozK4RVDkpNyB=-3uYpqKdw7LLS=8_w@mail.gmail.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:7.0) Gecko/20110917 Thunderbird/7.0

Hi

I think you mean SSL connection or the STARTTLS Layer...?
Please read the manual http://www.openldap.org/doc/admin24/tls.html

And tree security:
On my server, a client user can only see his own object:

Maybe create a rule like this:
access to filter=(objectClass=simpleSecurityObject)
        by self read
        by * none

....


--
Raffael Sahli
public@raffaelsahli.com




On 11/28/2011 10:04 AM, Jayavant Patil wrote:

Hi,
I am using openLDAP-2.4.19-4 on fedora 12 machine. I want to makeserver secure from client nodes so that clients don't hack the servernode. Hack in the sense that one client doesn't even read the data ofanother client, client doesn't tamper the server directory informationor try to spoof the server.
 Does anybody have any suggestions how to avoid these things in openLDAP?

 Thanks in advance.

--

Regards,
Jayavant Ningoji Patil
Engineer: System Software
Computational Research Laboratories Ltd.
Pune-411 004.
Maharashtra, India.
+91 9923536030.

References:
- Security between server and client nodes.
  - From: Jayavant Patil <jayavant.patil82@gmail.com>

Prev by Date: Re: per-dn limits
Next by Date: Re: Unable to login on client nodes.
Index(es):
- Chronological
- Thread