Mike Jackson wrote:
>
> I meant to write your own for this one specific administrative
> purpose. iPlanet only supports {crypt} (which is too weak to be
> used, imho), and {sha}.
I use {crypt} passwords because all traffic to and from my LDAP
server is SSL/TLS encrypted.
Is it common practice to forget wrapping all the LDAP traffic
when an acceptable amount of password encryption is used?
(Actually, I don't even like the personal information of my
users traveling in the clear either, but that is an
administrative decision left to my employer.)
-Drew
