Re: forcing encryption for external server access while allowing unencrypted localhost connections

To: Dieter Kluenter <dieter@dkluenter.de>
Subject: Re: forcing encryption for external server access while allowing unencrypted localhost connections
From: Chris Paul <openldap@rexconsulting.net>
Date: Fri, 10 Sep 2004 10:44:33 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <m3u0u95kwc.fsf@marin.l4b.de>
References: <413E1FC9.9080102@rexconsulting.net> <m3u0u95kwc.fsf@marin.l4b.de>
User-agent: Mozilla Thunderbird 0.5 (X11/20040817)

Dieter Kluenter wrote:


Let phpLDAPadmin contact slapd via socket, that is via ldapi://

-Dieter


Hi Dieter,

Well the local socket wants to use TLS, too:

$ ldapsearch -x -H ldapi:///usr/local/var/run/ldapi
# extended LDIF
#
# LDAPv3
# base <> with scope sub
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 13 Confidentiality required
text: confidentiality required

# numResponses: 1


I have this in my slapd.conf Global configuration section:

security ssf=128

CP

Follow-Ups:
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

References:
- forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Dieter Kluenter <dieter@dkluenter.de>