[prev in list] [next in list] [prev in thread] [next in thread]
List: ldap
Subject: [ldap] Re: Encryption only at binding time, not for session
From: Adam Tauno Williams <awilliam () wmmi ! net>
Date: 2007-02-28 12:24:53
Message-ID: 20070228072453.8a6m41mo4ks8g48s () www ! wmmi ! net
[Download RAW message or body]
> I do not like to send the password in the plain ASCII format, while
> binding to the LDAP server.
> But, the requests and response that are sent in the LDAP session can be
> sent in plain ASCII format.
> What mechanism I should use for it?
Yes, use a real SASL mechanism like DIGEST-MD5.
> I suppose, I cannot use the SSL mechanism as it involves the encryption,
> decryption both at the binding time and also for the requests, responses
> that are sent. This will be a performance kill for my LDAP client-server
> setup.
---
You are currently subscribed to ldap@umich.edu as: [ldap@progressive-comp.com]
To unsubscribe send email to ldap-request@umich.edu with the word UNSUBSCRIBE as the \
SUBJECT of the message.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic