[users@httpd] apache auth AD with ssl

[Diego Gomes - TI Cecred]

Hello All..

At moment, I have this config inside my apache virtual host:

AuthBasicProvider ldap
AuthType Basic
AuthzLDAPAuthoritative off
AuthName *** Be Careful ***
AuthLDAPURL 
ldap://serverdc.domain:389/dc=serverdc,dc=domain?sAMAccountName?sub?(objectClass=*)
AuthLDAPBindDN CN=user, OU=People, DC=serverdc, DC=domain
AuthLDAPBindPassword password
Require ldap-group CN=Group_Access,OU=Group,DC=serverdc,DC=domain

Look that my connection uses port tcp/389, without ssl..

I want that this connection, uses tcp/636, with ssl to encrypt passwords...

Anyone knows how can I do it?

Thanks anyway,
-- 
Esta mensagem foi verificada pelo sistema de antivirus e
 acredita-se estar livre de perigo.


-
The official User-To-User support forum of the Apache HTTP Server Project.
See URL:http://httpd.apache.org/userslist.html for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
  from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[us...@httpd] security incident and md5/sha1 checksums

[Diego Gomes]

Hi,

Concerning the security incident recently reported:

https://blogs.apache.org/infra/entry/apache_org_04_09_2010

It says that some SVN access was compromised. Does that mean I have to
check {md5,sha1}sum of things downloaded during the incident? Will ASF
report a new (reliable) list of  MD5/SHA1 of everything?

Sorry to post here, I've found some comments in the above blog asking
the same, but with no answer.

Cheers,

Diego.

-
The official User-To-User support forum of the Apache HTTP Server Project.
See URL:http://httpd.apache.org/userslist.html for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
  from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org