[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SSF and binds



Quanah Gibson-Mount wrote:

Have you tried making two clauses to the ACL?

access to <whatever>
    by <DN> ssf=63 read
    by peer=127.0.0.1 ssf=10 read
    by * break

Well, yes. But this would only control access to a particular object or set of objects. I'm talking about a bind operation. Is it possible to specify different required SSF values depending on, e.g., the peer?

Alternatively, is it possible to adjust a particular server instance
so that it sees a connection from 127.0.0.1 as inherently strong (with
a high SSF)?  I.e., is there a directive for this?

There are a lot of different ways I could phrase this, and a lot of
different scenarios I could cite.  But I'm sure y'all get the idea.

--

Richard L. Goerwitz III		   Email: Richard.Goerwitz@Carleton.edu
Phone: +1 507 646 5526				   Fax: +1 507 646 4537
PGP key fingerprint: 4471 B6D3 57CC B2DC A0CF  82D3 0B7D EA19 F425 B0E0