[Pkg-openldap-devel] More information on sudo-ldap SSL(ldaps://) breakage
Roberto C. Sánchez
roberto at connexer.com
Tue Mar 3 01:05:45 UTC 2009
On Sat, Apr 14, 2007 at 10:42:37PM -0400, Roberto C. Sánchez wrote:
> After upgrading my Sarge workstation to Etch today, I decided to start
> messing aroud with sudo-ldap. I was a bit disappointed to find that it
> did not work with ldaps:// schemes. I did some digging and here is what
> I have found. I think that there are a combination of factors, which is
> I why I have CC'd the pkg-openldap list. There must be something going
> here that I am just not seeing.
>
After upgrading my workstation and server to Lenny, I have found that my
described configuration works. One thing to note, however, is that I
have rebuilt the Lenny OpenLDAP packages to link against OpenSSL,
instead of GnuTLS so that I can continue using ldaps:///.
So, I am not certain if the problem "fixed" itself in the Etch -> Lenny
upgrade or because of the GnuTLS -> OpenSSL switch.
In any event, someone who knows more about OpenLDAP should investigate
this deeper and/or close this bug.
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-openldap-devel/attachments/20090302/fc59e556/attachment.pgp
More information about the Pkg-openldap-devel
mailing list