--On Thursday, April 13, 2023 10:31 AM +0200 Stefan Kania
wrote:
Because the SSF of GSSAPI is hard coded to be 56. With MIT kerberos
they eventually fixed this, but it's still not fixed in Heimdal (last I
checked, but haven't checked the status of that bug report in a while).
Once that is
Am 12.04.23 um 23:39 schrieb Quanah Gibson-Mount:
--On Wednesday, April 12, 2023 3:16 PM +0200 Stefan Kania
wrote:
Hi to all,
when I connect to openldap, with simple-bind I see:
---
mech=SIMPLE bind_ssf=0 ssf=256
So there is no security factor for a SIMPLE bind mechanism. The
--On Wednesday, April 12, 2023 3:16 PM +0200 Stefan Kania
wrote:
Hi to all,
when I connect to openldap, with simple-bind I see:
---
mech=SIMPLE bind_ssf=0 ssf=256
So there is no security factor for a SIMPLE bind mechanism. The *overall*
security factor of the connection is 256
Hi to all,
when I connect to openldap, with simple-bind I see:
---
mech=SIMPLE bind_ssf=0 ssf=256
---
When I connect to openldap with GSSAPI I see:
---
mech=GSSAPI bind_ssf=56 ssf=256
---
So I uses strong-bind via GSSAPI
there is no place where I can find anythin