[Fedora-directory-users] Simple Bind only in secured channel
Rich Megginson
rmeggins at redhat.com
Mon Jun 16 15:49:46 UTC 2008
Dael Maselli wrote:
> Hi all,
>
> is there any method to deny simple bind operation unless in a secure
> channel (SSL or STARTTLS)?
No. This relates to another requested feature, which is the ability to
deny anonymous bind or other anonymous operations. I would like to get
some requirements for such a feature.
* allow simple bind/anonymous operations only over a secure channel?
* allow simple bind/anonymous operations for certain hosts/ip addresses?
* allow only certain anonymous operations, like startTLS and the
password change extop? others?
* other access control features related to the above?
> Do I have to write a plug-in? Hints?
Yes, at this point it would have to be a plug-in, most likely a bind
pre-op plug-in.
>
> Thank you.
>
> Dael Maselli.
>
>
> ------------------------------------------------------------------------
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3258 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20080616/e47389f0/attachment.bin>
More information about the Fedora-directory-users
mailing list