mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity

ITS#9102 Update secprop documentation

Browse Source
This commit is contained in:
Ondřej Kuzník 2021-02-17 13:20:05 +00:00
parent f841427950
commit d3fca1364b
4 changed files with 10 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
doc/guide/admin/access-control.sdf
View File

@ -1112,8 +1112,9 @@ You can restrict access based on the security strength factor (SSF)
0 (zero) implies no protection, 0 (zero) implies no protection,
1 implies integrity protection only, 1 implies integrity protection only,
56 DES or other weak ciphers, 56 DES or other weak ciphers,
112 triple DES and other strong ciphers, 112 triple DES and similar ciphers,
128 RC4, Blowfish and other modern strong ciphers. 128 RC4, Blowfish and other similar ciphers,
256 modern ciphers.
Other possibilities: Other possibilities:

7
doc/man/man5/ldap.conf.5
View File

@ -265,11 +265,10 @@ mechanisms which can pass credentials to do so).
.B minssf=<factor> .B minssf=<factor>
specifies the minimum acceptable specifies the minimum acceptable
.I security strength factor .I security strength factor
as an integer approximating the effective key length used for as an integer approximate to effective key length used for
encryption. 0 (zero) implies no protection, 1 implies integrity encryption. 0 (zero) implies no protection, 1 implies integrity
protection only, 56 allows DES or other weak ciphers, 112 protection only, 128 allows RC4, Blowfish and other similar ciphers,
allows triple DES and other strong ciphers, 128 allows RC4, 256 will require modern ciphers. The default is 0.
Blowfish and other modern strong ciphers. The default is 0.
.TP .TP
.B maxssf=<factor> .B maxssf=<factor>
specifies the maximum acceptable specifies the maximum acceptable

5
doc/man/man5/slapd-config.5
View File

@ -773,9 +773,8 @@ property specifies the minimum acceptable
.I security strength factor .I security strength factor
as an integer approximate to effective key length used for as an integer approximate to effective key length used for
encryption. 0 (zero) implies no protection, 1 implies integrity encryption. 0 (zero) implies no protection, 1 implies integrity
protection only, 56 allows DES or other weak ciphers, 112 protection only, 128 allows RC4, Blowfish and other similar ciphers,
allows triple DES and other strong ciphers, 128 allows RC4, 256 will require modern ciphers. The default is 0.
Blowfish and other modern strong ciphers. The default is 0.
The The
.B maxssf=<factor> .B maxssf=<factor>
property specifies the maximum acceptable property specifies the maximum acceptable

5
doc/man/man5/slapd.conf.5
View File

@ -909,9 +909,8 @@ property specifies the minimum acceptable
.I security strength factor .I security strength factor
as an integer approximate to effective key length used for as an integer approximate to effective key length used for
encryption. 0 (zero) implies no protection, 1 implies integrity encryption. 0 (zero) implies no protection, 1 implies integrity
protection only, 56 allows DES or other weak ciphers, 112 protection only, 128 allows RC4, Blowfish and other similar ciphers,
allows triple DES and other strong ciphers, 128 allows RC4, 256 will require modern ciphers. The default is 0.
Blowfish and other modern strong ciphers. The default is 0.
The The
.B maxssf=<factor> .B maxssf=<factor>
property specifies the maximum acceptable property specifies the maximum acceptable