20 Oct
2014
20 Oct
'14
12:19 a.m.
Michael Ströder michael@stroeder.com schrieb am 20.10.2014 um 08:47 in
Nachricht 5444B01F.2050701@stroeder.com:
Ulrich Windl wrote:
Related question: If a slapcat of the config database doesn't show a value for TLSCipherSuite, does it mean it is some default value?
I'm pretty sure the default depends on the TLS lib used and how it was
built
for a certain OS.
Does it mean openLDAP has no idea about the default, unless you explicitly set it?
=> always set TLSCipherSuite explicitly
To find out which protocols/ciphers can be used with a current installation use sslscan.
Ciao, Michael.