[Date Prev][Date Next] [Chronological] [Thread] [Top]

TCP Wrappers?

To: openldap-software@OpenLDAP.org
Subject: TCP Wrappers?
From: Ken Kleiner <ken@cs.uml.edu>
Date: Tue, 14 May 2002 16:59:36 -0400 (EDT)

Hi....

  I just compiled openldap with --enable-wrappers.  To allow access to slapd
if I normally disallow everybody, I assume I have to put the following in
/etc/hosts.allow:

ldap : hostname_of_client
ldaps : hostname_of_client

  Is that correct?  Or, does this only work if LDAP is run out of inetd?
If that is the case, how does one go about limiting who can read my 
database?  I need this 'anonymous' read functionality so that pam_ldap
will work from clients I specify.  Can I use the binddn/bindpw in the
clients?  If so, is that clear text? 

  Sorry for the rambling, just looking for some help....
  
  Thanks....

-- 
<><  ><> <><  ><> <><  ><> <><  ><> <><  ><> <><  

Ken Kleiner
System Manager
Computer Science Department
Umass Lowell

voice : 978 934 3645
fax : 978 934 3551

cell : 603 930 5582 (emergencies only, please)

ken@cs.uml.edu

Follow-Ups:
- RE: TCP Wrappers?
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: problem running configure script with cyrus sasl support
Next by Date: Re: ;binary
Index(es):
- Chronological
- Thread