--On November 16, 2009 8:09:44 PM +0000 Markus Moeller
<[email protected]> wrote:
"Quanah Gibson-Mount" <[email protected]> wrote in message
news:13eb6539f13316bc67e85...@[192.168.1.199]...
--On Sunday, November 15, 2009 10:36 PM +0000 Markus Moeller
<[email protected]> wrote:
It might be an AD setting (enforcing SSL). But does it make sense to use
SASL/GSSAPI encryption on top of SSL ?
Well, given things like MITM with SSL, it could be. ;) Plus it could be
possible the SASL SSF is higher than the SSL SSF.
I can't help that Microsoft does a poor job of implementation. :) OpenLDAP
certainly supports server side setting of both the SSL SSF and SASL SSF
requirements. And the overall SSF requirement so you don't have to
individually set them, but you can if you want.
--Quanah
--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra :: the leader in open source messaging and collaboration
