Am Mon, 10 Nov 2014 14:11:59 +0100 schrieb Christopher Odenbach odenbach@uni-paderborn.de:
Hi,
while I was trying to find out why slapd does not use Perfect Forward Secrecy I found bug #7506 from september 2013. The patch has already been applied to the master branch but still cannot be found in any released version since. Why is this so? I would like to see good encryption in OpenLDAP for Debian.
Anyone willing to give an answer to my question? I am glad the patch was accepted originally but I need it in the releases.
You should pobably read GnuTLS Docs on this matter, and this blog for background information.
https://sys4.de/de/blog/2013/09/09/perfect-forward-secrecy-eine-zusammenfass...
-Dieter