Bug#235653: Status of Bug 235653?

To: "Mike McCallister" <mike@metalogue.com>, 235653@bugs.debian.org
Subject: Bug#235653: Status of Bug 235653?
From: "Adam Conrad" <adconrad@0c3.net>
Date: Wed, 20 Apr 2005 17:04:28 +1000 (EST)
Message-id: <[🔎] 3447.130.194.13.105.1113980668.squirrel@mail.0c3.net>
Reply-to: adconrad@0c3.net, 235653@bugs.debian.org
In-reply-to: <[🔎] 20050420053624.GA29940@yosemite.home.metalogue.com>
References: <[🔎] 20050420053624.GA29940@yosemite.home.metalogue.com>

Mike McCallister wrote:
> What is the status of bug 235653 (http://bugs.debian.org/235653), to
> enable mod_auth_ldap to use TLS/SSL?  Based on the response from March 1
> 2004, it sounds like it was intended to be fixed in short order, but
> this bug is still open.  Is it likely to be fixed any time soon?

Note that the page you pointed to states that SSL is supported via the
Netscape SDK *OR* TLS is supported via OpenLDAP.  I would read that to
mean that the "LDAP: SSL support unavailable" message would be expected
when using OpenLDAP.

Have you tried the LDAPTrustedCA and LDAPTrustedCAType directives which
are pointed out at:

http://httpd.apache.org/docs-2.0/mod/mod_auth_ldap.html#usingtls

The way I read that would be that you shouldn't use "ldaps://" with
OpenLDAP, but rather just "ldap://"; with the two directives above.

If you can try that out and let me know if it works out of the box, then
perhaps I can close this bug. :)

... Adam

Reply to:

Follow-Ups:
- Bug#235653: Status of Bug 235653?
  - From: Mike McCallister <mike@metalogue.com>

References:
- Bug#235653: Status of Bug 235653?
  - From: Mike McCallister <mike@metalogue.com>

Prev by Date: Bug#235653: Status of Bug 235653?
Next by Date: Bug#305495: apache: AddDefaultCharset breaks the non-latin1 pages
Previous by thread: Bug#235653: Status of Bug 235653?
Next by thread: Bug#235653: Status of Bug 235653?
Index(es):
- Date
- Thread