The mailing list for listmasters using Sympa

[Olivier Salaun - CRU <address@concealed>]

Though it's not a bad thing to do SSH tunnelling or IPSec, LDAPS seems 
to be a standard way of accessing LDAP directory a secure way.

We have started the LDAPS support in Sympa's authentication code (see 
http://www.sympa.org/doc/html/node10.html#SECTION001052000000000000000) 
and we will generalize it in the 'include_ldap_query' config parameter ; 
unless somone else does it in the meanwhile ;-)

Rene Pfeiffer a écrit :

> On Mar 30, 2004 at 2123 -0800, Aron Roberts appeared and said:
>  
>
> >  How does you set up encrypted connections (via SSL or otherwise) to LDAP or 
> > SQL data sources from within Sympa to protect passwords, in the event one is 
> > using a privileged bind or connection to those sources?
> >    
> I would not putr this code into the application. There are numerous ways to 
> establish a SSH tunnel or to use IPsec in order to secure the transport 
> layer. The latter is extremely easy to set up with the new Linux kernel 2.6.x.
>
> http://pigtail.net/LRP/printsrv/tunnel-how.html
> http://www.ipsec-howto.org/t1.html
>
> We use SSH tunnels for remote server backups and this works realiably for 
> over three years now.
>  
--
Olivier Salaun
Comite Reseau des Universites

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature