[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: forcing encryption for external server access while allowing unencrypted localhost connections

To: openldap-software@OpenLDAP.org
Subject: Re: forcing encryption for external server access while allowing unencrypted localhost connections
From: Dieter Kluenter <dieter@dkluenter.de>
Date: Thu, 16 Sep 2004 19:40:57 +0200
In-reply-to: <41498E2F.6090907@Goerwitz.COM> (Richard L. Goerwitz, III's message of "Thu, 16 Sep 2004 07:59:27 -0500")
References: <413E1FC9.9080102@rexconsulting.net> <m3u0u95kwc.fsf@marin.l4b.de> <4141E801.5040908@rexconsulting.net> <6.1.2.0.0.20040910141706.0426a150@127.0.0.1> <41477EFB.6090005@rexconsulting.net> <41484179.1050907@Goerwitz.COM> <4148BFCD.9020306@rexconsulting.net> <m3oek6wwrj.fsf@marin.l4b.de> <41498E2F.6090907@Goerwitz.COM>
User-agent: Gnus/5.1002 (Gnus v5.10.2) XEmacs/21.4 (Rational FORTRAN, linux)

"Richard L. Goerwitz III" <richard@Goerwitz.com> writes:

> Dieter Kluenter wrote:

>
> Two comments:
>
>    1) The issue is that Chris (and others, it turns out) could
>       really use a way to assign SSFs to sessions over specific
>       transports or connections to/from specific peers - and do
>       it at startup time from the slapd.conf file

When thinking about it, are you referring to a global security setting
in the global part of slapd.conf?
Well if so, you may set

security ssf=n

see man slapd.access(5) for further details.

-Dieter 

-- 
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8C183C8622115328

Follow-Ups:
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>

References:
- forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Dieter Kluenter <dieter@dkluenter.de>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: "Richard L. Goerwitz III" <richard@Goerwitz.com>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Chris Paul <openldap@rexconsulting.net>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: Dieter Kluenter <dieter@dkluenter.de>
- Re: forcing encryption for external server access while allowing unencrypted localhost connections
  - From: "Richard L. Goerwitz III" <richard@Goerwitz.com>

Prev by Date: Re: configure: error: Berkeley DB version mismatch
Next by Date: Simple replication won't work
Index(es):
- Chronological
- Thread