Is $ldap->start_tls( verify => 'none') good enough in the ldpweb.cgi?
Currently when the ldapweb.cgi binds the ldap server, it issue this command to start tls:
$ldap->start_tls( verify => 'none')
Is this command secure enough?
It seems verify can be 'none' | 'optional' | 'require'.
In the line 814, it is #$ldap->start_tls( verify => 'require',
#cafile => '/usr/share/ssl/ldapcerts/cacert.pem');
But they were commented out.