From: Kurt Zeilenga <kurt@openldap.org>
Date: Sat, 12 Oct 2002 05:10:41 +0000 (+0000)
Subject: correct security sample
X-Git-Tag: NO_SLAP_OP_BLOCKS~886
X-Git-Url: https://git.sur5r.net/?a=commitdiff_plain;h=c64d28aa4e5faaaead5b81b359f8a23ea85338b5;p=openldap

correct security sample
---

diff --git a/servers/slapd/slapd.conf b/servers/slapd/slapd.conf
index 91dab7bdb0..0c39145cde 100644
--- a/servers/slapd/slapd.conf
+++ b/servers/slapd/slapd.conf
@@ -28,8 +28,9 @@ argsfile	%LOCALSTATEDIR%/slapd.args
 # disallow bind_simple_unprotected
 #
 #	Require integrity protection (prevent hijacking)
-#	Require 112-bit (3DES or better) encryption
-# security ssf=1 ssf=112
+#	Require 112-bit (3DES or better) encryption for updates
+#	Require 63-bit encryption for simple bind
+# security ssf=1 update_ssf=112 simple_bind=64
 
 # Sample access control policy:
 #	Allow read access of root DSE