Whats in your LDAP?
Shane Hathaway
shane at hathawaymix.org
Mon Oct 22 21:44:52 MDT 2007
Michael L Torrie wrote:
> Finally, note that the real world compels us to implement compromise
> solutions. For example, LDAP simple binds over SSL may be good enough.
> Just know there are better solutions. My departmental servers always
> try to use Kerberos first, and failing that (no ticket maybe), fall back
> to LDAP binds.
Ok, I'll keep that in mind for the future. Right now, the accounts and
services I'm managing all exist within a single machine, so I blocked
all external connections to LDAP. I may have to move into Kerberos when
the system grows beyond that box. Thanks.
Shane
More information about the PLUG
mailing list