URL: https://github.com/freeipa/freeipa/pull/3183 Author: tiran Title: #3183: Require a SASL SSF of >= 56 on client side Action: opened
PR body: """ SSF_MINX 56 level ensures data integrity and confidentiality for SASL GSSAPI and SASL GSS SPNEGO connections. Although at least AES128 is enforced pretty much everywhere, 56 is required.
The origianl commit 350954589774499d99bf87cb5631c664bb0707c4 added minimum SSF on LDAP client and LDAP server. Some LDAP consumers like realmd are not compatible with strong SSF yet.
Related: https://pagure.io/freeipa/issue/7140 Related: https://pagure.io/freeipa/issue/4580 Signed-off-by: Christian Heimes cheimes@redhat.com """
To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/3183/head:pr3183 git checkout pr3183
URL: https://github.com/freeipa/freeipa/pull/3183 Author: tiran Title: #3183: Require a SASL SSF of >= 56 on client side Action: closed
To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/3183/head:pr3183 git checkout pr3183
freeipa-devel@lists.fedorahosted.org