[Pkg-openldap-devel] Bug#512785: Bug#512785: slapd: syncrepl client fails TLS unless server also has TLS

Quanah Gibson-Mount quanah at zimbra.com
Fri Jan 23 22:30:33 UTC 2009


--On Friday, January 23, 2009 3:27 PM -0700 Rob Sims 
<debbugs-z at robsims.com> wrote:

> Thanks for the prompt response.
>
> I think it's reasonable to not have to generate a certificate/key pair
> (and possibly a CA certificate if you're cloning a database you don't
> own) that are unused because the server side doesn't offer TLS.

Agreed.  I would highly advise filing this and the documentation 
suggestions upstream (http://www.openldap.org/its/) as that's what would 
actually get them resolved.  There's an active doc writer on the project 
now.  They should be filed as separate ITSes (one for the TLS bits, one for 
the doc updates).

--Quanah

--

Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration





More information about the Pkg-openldap-devel mailing list