WebApp Sec mailing list archives
Re: How to enable LDAP signing on client side
From: "Peter M. Jansson" <petej () clickvision com>
Date: Tue, 15 Sep 2009 08:48:57 -0700
On Sep 14, 2009, at 7:21 AM, Jianrong Yu <yuj () ohio edu> wrote:
How to enable LDAP signing on client side?
The goal of having the server sign LDAP results would be to give confidence in the integrity if the answers. I don't understand what the goal of having clients sign queries would be. If you use SSL, the client-server exchange is kept confidential (subject to some assumptions) and client-side certificates can be used by the server to provide access control so rogue clients can't make requests.
Current thread:
- How to enable LDAP signing on client side Jianrong Yu (Sep 15)
- Re: How to enable LDAP signing on client side Peter M. Jansson (Sep 15)