[dak/master] Do not require TLS for LDAP.

To: debian-dak@lists.debian.org,dak@commit.ganneff.de
Subject: [dak/master] Do not require TLS for LDAP.
From: Ansgar Burchardt <ansgar@debian.org>
Date: Mon, 18 May 2015 18:13:55 +0000
Message-id: <[🔎] E1YuPY3-0002rT-9C@franck.debian.org>

Somehow this broke with the upgrade to Debian 8. As the information is
more or less informational (connect keys to accounts), do not require
TLS for LDAP connections for a moment.
---
 config/debian-security/dak.conf | 2 +-
 config/debian/dak.conf          | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/config/debian-security/dak.conf b/config/debian-security/dak.conf
index 9eb0829..42aa1e4 100644
--- a/config/debian-security/dak.conf
+++ b/config/debian-security/dak.conf
@@ -56,7 +56,7 @@ Import-LDAP-Fingerprints
 {
   LDAPDn "ou=users,dc=debian,dc=org";
   LDAPServer "db.debian.org";
-  CACertFile "/etc/ssl/certs/db.debian.org.pem";
+  // CACertFile "/etc/ssl/certs/db.debian.org.pem";
   ExtraKeyrings
   {
     "/srv/keyring.debian.org/keyrings/removed-keys.pgp";
diff --git a/config/debian/dak.conf b/config/debian/dak.conf
index f07a83b..8a18937 100644
--- a/config/debian/dak.conf
+++ b/config/debian/dak.conf
@@ -99,7 +99,7 @@ Import-LDAP-Fingerprints
 {
   LDAPDn "ou=users,dc=debian,dc=org";
   LDAPServer "db.debian.org";
-  CACertFile "/etc/ssl/certs/db.debian.org.pem";
+  // CACertFile "/etc/ssl/certs/db.debian.org.pem";
   ExtraKeyrings
   {
     "/srv/keyring.debian.org/keyrings/removed-keys.pgp";
-- 
2.1.4

Reply to:

Prev by Date: [dak/master] apache.conf: merge changes from upgrade to Debian 8
Next by Date: [dak/master] Re-enable TLS for LDAP
Previous by thread: [dak/master] apache.conf: merge changes from upgrade to Debian 8
Next by thread: [dak/master] Re-enable TLS for LDAP
Index(es):
- Date
- Thread