[Pkg-openldap-devel] Bug#541256: Bug#541256: Bug#541256: TLS: could not set cipher list TLS_RSA_AES_256_CBC_SHA1
Quanah Gibson-Mount
quanah at zimbra.com
Thu Aug 13 00:21:52 UTC 2009
--On Wednesday, August 12, 2009 5:19 PM -0700 Quanah Gibson-Mount
<quanah at zimbra.com> wrote:
> --On Thursday, August 13, 2009 2:12 AM +0200 Vedran Furač
> <vedranf at vedranf.mine.nu> wrote:
>
>
>>> Please see the upstream comments. The issue is broken behavior on
>>> GnuTLS' part.
>>
>> Ah... I see. Thanks for forwarding it! Anyway, I tried his suggestion
>> and changed slapd.conf on server side and libnss/pam_ldap.conf/ldap.conf
>> on client to have:
>>
>> TLSCipherSuite +AES-256-CBC:+SHA1
Try:
TLSCipherSuite +RSA:+AES-256-CBC:+SHA1
--Quanah
--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra :: the leader in open source messaging and collaboration
More information about the Pkg-openldap-devel
mailing list