Hi Christopher,
Why don't you use secure LDAP, that's what it's there for!
Radiator supports secure LDAP and it's the easiest way of doing it IMO.
By the way, the SSL connection stays up until the connection is lost, so there
is no extra handshake overhead for every request (except for the encryption). I
think Stuarts remark about tunneling over SSH resulting in less overhead isn't
valid. Worse, when your SSH tunnel goes down, you need to get it up somehow.
SSL is incorporated in the LDAP client and the connection brough up
automatically.
For openssl there should be patches, Netscape's LDAP SDK ships with the SSL
libraries and several other LDAP servers can work with SSL too.
- Joost.
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
