From 424d673a6c8e21795f3142cdc29999d7ee4e44ad Mon Sep 17 00:00:00 2001 From: Kurt Zeilenga Date: Mon, 13 Sep 2004 20:43:33 +0000 Subject: [PATCH] Update SSF comments --- doc/man/man5/slapd.access.5 | 3 ++- doc/man/man5/slapd.conf.5 | 11 ++++++----- 2 files changed, 8 insertions(+), 6 deletions(-) diff --git a/doc/man/man5/slapd.access.5 b/doc/man/man5/slapd.access.5 index a72e56db5c..f2d9f3b647 100644 --- a/doc/man/man5/slapd.access.5 +++ b/doc/man/man5/slapd.access.5 @@ -534,7 +534,8 @@ The statements .BR tls_ssf= , and .BR sasl_ssf= -set the required Security Strength Factor (ssf) required to grant access. +set the minimum required Security Strength Factor (ssf) needed +to grant access. The value should be positive integer. .SH THE FIELD The field .B ::= [self]{|} diff --git a/doc/man/man5/slapd.conf.5 b/doc/man/man5/slapd.conf.5 index b4ed4ab3ab..d0648d2a30 100644 --- a/doc/man/man5/slapd.conf.5 +++ b/doc/man/man5/slapd.conf.5 @@ -518,7 +518,7 @@ such as those to the ldapi:// listener. For a description of SSF values, see .BR sasl-secprops 's .B minssf -property description. The default is 71. +option description. The default is 71. .TP .B loglevel [...] Specify the level at which debugging statements and operation @@ -801,10 +801,11 @@ Specify the distinguished name for the subschema subentry that controls the entries on this server. The default is "cn=Subschema". .TP .B security -Specify a set of factors (separated by white space) to require. -An integer value is associated with each factor and is roughly -equivalent of the encryption key length to require. A value -of 112 is equivalent to 3DES, 128 to Blowfish, etc.. +Specify a set of security strength factors (separated by white space) +to require (see +.BR sasl-secprops 's +.B minssf +option for a description of security strength factors). The directive may be specified globally and/or per-database. .B ssf= specifies the overall security strength factor. -- 2.39.5