Adam Tauno Williams writes: >> From my interest in applied cryptography, I was surprised to see how >> limited are the (open)LDAP directory entry encryption options. >> From a security audit perspective, plain text passwords in the LDAP DSA >> implementation appears worrysome. > > Why? If your DSA(s) is/are breached - your screwed anyway. The worry > seems almost entirely theoretical to me.
How screwed you are depends both on what the DSAs contain and which services use them. Also there is no need to set things up so that once you are somewhat screwed then you are totally screwed. -- Regards, Hallvard --- You are currently subscribed to [EMAIL PROTECTED] as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
