On Fri, 6 Sep 2002, Arvin C. Burgos wrote:
> hi there:
> hope and please help me! im having an headache with the security i want
> to implement for my companies LAN users and for my Remote clients. i
> tried squid proxy but it's not working. quite simple, i only want to
> have an authentication gateway for all my users both local and remote
> for not letting them to connect to this dangerous world"INTERNET".i
> want every users to have an authentication just like username and
> password to verify each of them if they are allowed or not. im planning
> to use LDAP for my authentication, is it a good idea?. if that's one of
> the choice, how? please guide me where to look for that solution. please
> help!!!
>
LDAP might be a good solution for your authentication although it
still boils down on how you configure the security options for clients and
server. If you want the high security model, transactions between
server/clients must be channeled through TLS/SSL. Additional security can
be gained if passwords are stored encrypted in the database. You might as
well consider using a firewall to restrict clients that can bind to your
server. Proper database replication may also contribute to robustness and
security.
As far I am concerned the most compreshensive LDAP implementation
would still be from www.iplanet.com . I am not sure though about the
progress of www.openldap.org .
rowel
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
