On 27-Nov-98 Vadim Fedukovich wrote:
>>
>> On 24-Nov-98 Vadim Fedukovich wrote:
>> >
>> > It seems your question does not relate to just SSL protocol.
>> > To answer it one should know what application you are trying to convince
>> > to grant access or privilege level based on the fact user do know
>> > a private key corresponding to certificate presented.
>> > I believe most free software (available in src to be exact) can be tweaked
>> > to follow any reasonable convention adopted in an organisation.
>>
>> was that realistically supposed to be an answer?
>
> Well, I've build OpenLDAP on linux/i386 recently to serve Netscape
> mail client queries; it works just great. I'm considering to implement
> SSL authentication at slapd and evaluating pam_ldap to use it as a single
> database for site-wide authorization and services granting.
> Any advise, recommendation, "done and should work" note?
sure, but he asked a question which you didn't answer
i was just wondering why?
i could have said "its only software too" but it would have served non purpose and
would have helped no-one
now it appears that you have written good ldap software
but you didn't say that! - all you said was - "go hack code"
your second answer gives much more information than your first one
so maybe my mail worked :-)
--
simon
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
