[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ldap
Subject:    [ldap] Re: Encryption only at binding time, not for session
From:       Adam Tauno Williams <awilliam () wmmi ! net>
Date:       2007-02-28 12:24:53
Message-ID: 20070228072453.8a6m41mo4ks8g48s () www ! wmmi ! net
[Download RAW message or body]

> I do not like to send the password in the plain ASCII format, while
> binding to the LDAP server.
> But, the requests and response that are sent in the LDAP session can be
> sent in plain ASCII format.
> What mechanism I should use for it?

Yes, use a real SASL mechanism like DIGEST-MD5.

> I suppose, I cannot use the SSL mechanism as it involves the encryption,
> decryption both at the binding time and also for the requests, responses
> that are sent. This will be a performance kill for my LDAP client-server
> setup.

---
You are currently subscribed to ldap@umich.edu as: [ldap@progressive-comp.com]
To unsubscribe send email to ldap-request@umich.edu with the word UNSUBSCRIBE as the \
SUBJECT of the message.


[prev in list] [next in list] [prev in thread] [next in thread]