13 Aug
2009
13 Aug
'09
4:13 a.m.
Howard Chu wrote:
Michael Ströder wrote:
I'm using libldap of RE24 and have a problem with host name checking when doing TLS.
OpenLDAP's debug output (real hostname exactly replaced by srv.domain.local):
------------------------------ snip ------------------------------ TLS: hostname (srv.domain.local.) does not match common name in certificate (srv.domain.local). ------------------------------ snip ------------------------------
Is this because of the trailing dot?
Probably. The RFC requires an exact match, there's no exception for dots.
It seems I messed up something locall. Sorry for the noise.
Ciao, Michael.