Whats in your LDAP?

Shane Hathaway shane at hathawaymix.org
Mon Oct 22 21:44:52 MDT 2007


Michael L Torrie wrote:
> Finally, note that the real world compels us to implement compromise
> solutions.  For example, LDAP simple binds over SSL may be good enough.
> Just know there are better solutions.  My departmental servers always
> try to use Kerberos first, and failing that (no ticket maybe), fall back
> to LDAP binds.

Ok, I'll keep that in mind for the future.  Right now, the accounts and
services I'm managing all exist within a single machine, so I blocked
all external connections to LDAP.  I may have to move into Kerberos when
the system grows beyond that box.  Thanks.

Shane



More information about the PLUG mailing list