Re: OpenLdap 2.4.17 and openssl 0.9.8l and datagram-based TLS

18 Nov 2009


      Robert Hanson wrote:
...
Our customer is requiring us to use openssl 0.9.8l   They have
determined that there is a problem with datagram based TLS; as long as
we’re not using datagram-based TLS for communication to slapd, we can go
ahead and approve this.
Please read this post
http://www.openldap.org/lists/openldap-software/200911/msg00102.html
and explain to your customer that OpenSSL 0.9.8l is broken and using it will
result in hung connections. Nobody should be using it. 0.9.8m will probably be
released soon due to the issues in 0.9.8l.
...
How do I find out if I’m using datagram-based TLS?  Is it something in
the slapd.conf file or is it something in the build of openldap?  Or is
it just not an issue?
It is not an issue. LDAP is a connection-oriented protocol, not datagram-based.
-- 
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: OpenLdap 2.4.17 and openssl 0.9.8l and datagram-based TLS