[Freeipa-devel] [PATCH] 911 ensure confidential minssf

[Rob Crittenden]

Rob Crittenden wrote:
> Ensure that we always use at least 56 for minssf when communicating with
> 389-ds. This will prevent someone from modifying /etc/openldap/ldap.conf
> in a way to put all communication in the clear.
>
> See the ticket for testing information.
>
> rob

Note that it should be setting minssf to 56 and not 1 here. I hadn't 
committed that change yet, I'll fix before pushing if acked.

rob