LDAP samdb and "ldap ssl" (fwd)
Simo Sorce
idra at samba.org
Thu Jan 3 02:19:02 GMT 2002
I'm for security by default, good docs should do the rest.
On Wed, Jan 02, 2002 at 03:17:20PM -0600, Gerald (Jerry) Carter wrote:
> Folks,
>
> I need to do a straw poll. Right now the "ldap ssl" for the ldap samdb
> backend defaults to off which means that everthing goes in the clear in
> between the ldap server and smbd. How do people feel about making this
> parameter default to "start tls"? This means that using the default
> values, only an OpenLDAP 2.0 server properly confiured to support SSL
> connections would work. This could be manually changed of course. The
> advantage I see is not sending things over the wire in the clear without
> the direct consent of the admin.
>
> Yes? No?
>
>
>
>
>
> chau, jerry
> ---------------------------------------------------------------------
> Hewlett-Packard http://www.hp.com
> SAMBA Team http://www.samba.org
> -- http://www.plainjoe.org
> "Sam's Teach Yourself Samba in 24 Hours" 2ed. ISBN 0-672-32269-2
> --"I never saved anything for the swim back." Ethan Hawk in Gattaca--
>
>
>
--
Simo Sorce idra at samba.org
-------------------------------
Samba Team http://www.samba.org
More information about the samba-technical
mailing list