On Wed, Apr 18, 2007 at 04:03:32PM +0200, Seth Mos wrote: > And in the case of my urlcheck against a https site the end-to-end > transport is secure as well. This against running a local binary which > then authenticates against a remote source (ldap) without encryption. > Which then quite possibly communicates authentication information or > user information unencrypted. FWIW, I use an urlcheck with a ldap://localhost URL. There is a replica of the master LDAP on localhost, with changes being pushed through LDAP/SSL -- Emmanuel Dreyfus manu@...
Message
Re: [milter-greylist] poll about urlchecks
2007-04-18 by Emmanuel Dreyfus