[Date Prev][Date Next]
Re: Increase default olcLocalSSF to 128
Am Thu, 26 Jul 2018 08:19:34 +0200
schrieb Michael Ströder <firstname.lastname@example.org>:
> On 07/26/2018 04:47 AM, Ryan Tandy wrote:
> > I propose increasing the default olcLocalSSF to 128. Mentioned
> > initially on IRC, now bringing it to the list for completeness and
> > archival.
> > In typical setups people want to require TLS *or* ldapi, and
> > ssf=128 seems like a pretty common olcSecurity setting for current
> > systems.
> But why not choosing an even higher value like 256?
> I really wonder why it was set to 71.
As Kurt mentioned on 1st. LDAPCon in Cologne, it is higher value than 56
and less than 128.
Dieter Klünter | Systemberatung
GPG Key ID: E9ED159B