[Freeipa-devel] [PATCH] 911 ensure confidential minssf
Rob Crittenden
rcritten at redhat.com
Tue Dec 6 23:18:25 UTC 2011
Rob Crittenden wrote:
> Ensure that we always use at least 56 for minssf when communicating with
> 389-ds. This will prevent someone from modifying /etc/openldap/ldap.conf
> in a way to put all communication in the clear.
>
> See the ticket for testing information.
>
> rob
Note that it should be setting minssf to 56 and not 1 here. I hadn't
committed that change yet, I'll fix before pushing if acked.
rob
More information about the Freeipa-devel
mailing list