Thx for your replies!
2011/7/8 Andrew Findlay <[email protected]>:
> On Fri, Jul 08, 2011 at 01:57:29PM +0200, Khaled Blah wrote:
>
>> I use OpenLDAP in an authentication project and I would like to
>> correctly deal with fauly networks. I mean networks that have packet
>> losses and such.
>
> You do not need to worry about that at the LDAP level, as TCP
> deals with it at the transport level.
>
>> That is why I would like to know whether there is a function in
>> OpenLDAP which allows to check (and maybe sanitize) possibly corrupted
>> sockets associated with the LDAP handle?
>
> If you are really concerned about corrupted data due to malicious causes
> then you should use TLS. The combination of TCP, stream encryption,
> and LDAP protocol checks should catch almost any corruption.
>
> Andrew
> --
> -----------------------------------------------------------------------
> | From Andrew Findlay, Skills 1st Ltd |
> | Consultant in large-scale systems, networks, and directory services |
> | http://www.skills-1st.co.uk/ +44 1628 782565 |
> -----------------------------------------------------------------------
>
