openldap-devel July 2009

openldap-devel@openldap.org

12 participants
18 discussions

RE24 testing call (2.4.17) round 4
by Quanah Gibson-Mount 08 Jul '09

08 Jul '09

Someone jinxed us mentioning round 4 last time. :P This should really be the final round, I swear! ;) --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

4 3

Re: RE24 testing call (2.4.17) round 3
by Matt Kassawara 07 Jul '09

07 Jul '09

Builds fine with GnuTLS and OpenSSL on Ubuntu Hardy i386, amd64, and lpia... and seems OK in my test environment. On Mon, Jul 6, 2009 at 1:33 PM, Quanah Gibson-Mount <quanah(a)zimbra.com>wrote: > Hopefully, final call for 2.4.17 testing. Thanks! > > --Quanah > > -- > > Quanah Gibson-Mount > Principal Software Engineer > Zimbra, Inc > -------------------- > Zimbra :: the leader in open source messaging and collaboration > >

1 0

RE24 testing call (2.4.17) round 3
by Quanah Gibson-Mount 07 Jul '09

07 Jul '09

Hopefully, final call for 2.4.17 testing. Thanks! --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

3 2

GSSAPI signing/encryption for unsuspectingly applications (its not a bug)
by mikbec 02 Jul '09

02 Jul '09

Patch related to "(ITS#6110) GSSAPI signing/encryption for unsuspectingly applications" is more an enhancement than a bug report. Please have a look at patch on ftp://ftp.openldap.org/incoming/mike-becher-090512.libraries-libldap.patch or ITS report on http://www.openldap.org/its/index.cgi/Incoming?id=6110;selectid=6110 In short that patch: 1) adds call of ldap_gssapi_bind_s() at the beginning of ldap_sasl_interactive_bind_s() which can be turn on or off by an GSSAPI OPTION (manual update of ldap.conf (5) included) to provide GSSAPI signing/encryption for applications that use (and only know) ldap_sasl_interactive_bind_s(), 2) adds the missed implementation of "switch off" functionality of all other GSSAPI OPTIONS. 3) corrects one string length problem in guess_service_principal() and 4) corrects one hostname resolving problem in guess_service_principal(). Sorry for that kind of announcement but I hope now it is on the right mailing list. best regards Mike

5 11

Fwd: TLS init def ctx failed: -1
by Howard Chu 02 Jul '09

02 Jul '09

We need to either remove this document from the web site, or remove the part that tells how to create a self-signed server cert. Anyone deploying TLS with their own certs should be creating their own CA separately from their server certs. And telling folks to create cert files where the private key is included in the same file is utterly irresponsible. -------- Original Message -------- Subject: TLS init def ctx failed: -1 Date: Thu, 2 Jul 2009 12:39:21 +0200 From: François Mehault <Francois.Mehault(a)netplus.fr> To: openldap-technical(a)openldap.org <openldap-technical(a)openldap.org> Hi all I contact you because I don’t succeed to configure my OpenLDAP with TLS. First I create self signed certificate server.pem like I read on this page http://www.openldap.org/pub/ksoper/OpenLDAP_TLS.html#5.1.1 in /usr/local/etc/openldap/tls. |*openssl req -newkey rsa:1024 -x509 -nodes -out server.pem -keyout server.pem -days 365*| |* *| Then I add this line in slapd.conf : TLSCertificateFile /usr/local/etc/openldap/tls/server.pem TLSCertificateKeyFile /usr/local/etc/openldap/tls/server.pem TLSCACertificateFile /usr/local/etc/opendldap/tls/server.pem TLSVerifyClient never Then I restart slapd. /usr/local/etc/rc.d/slapd stop , start. And in my /var/log/debug.log I have Jul 2 12:18:39 labobe2 slapd[97816]: main: TLS init def ctx failed: -1 Jul 2 12:18:39 labobe2 slapd[97816]: slapd destroy: freeing system resources. Jul 2 12:18:39 labobe2 slapd[97816]: syncinfo_free: rid=001 Jul 2 12:18:39 labobe2 slapd[97816]: slapd stopped. I use FreeBSD 7. If someone can help me, I appreciate, thanks in advance Regards, François

2 1

RE24 testing call (2.4.17) round 3
by Quanah Gibson-Mount 02 Jul '09

02 Jul '09

Remaining known issues are now fixed. Please test with updated CVS of RE24. Thanks! --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

3 2

ITS and attachments
by Michael Ströder 01 Jul '09

01 Jul '09

HI! When posting an ITS together with testrun data I always put the ITS number in the archive's file name but I don't know the number before submitting the ITS. Therefore I wait until the generated ITS message to be received and then follow up with the URL to the testrun data. Would be much better if attachments (or at least URLs) could added to an issue after submission (like in Bugzilla) to avoid URL references to external resources. Ciao, Michael.

2 1

RE24 testing call (2.4.17) round 2
by Quanah Gibson-Mount 01 Jul '09

01 Jul '09

Please test RE24 and report any issues. All known regressions are now believed fixed. Thanks! --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration

7 13

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-devel July 2009