Rob Crittenden wrote:
Ensure that we always use at least 56 for minssf when communicating with
389-ds. This will prevent someone from modifying /etc/openldap/ldap.conf
in a way to put all communication in the clear.
See the ticket for testing information.
Note that it should be setting minssf to 56 and not 1 here. I hadn't
committed that change yet, I'll fix before pushing if acked.
Freeipa-devel mailing list