Re: LDAP and TLS in woody

To: jogi hofmueller <jogi@mur.at>
Cc: Debian ISP list <debian-isp@lists.debian.org>, Debian-Security List <debian-security@lists.debian.org>
Subject: Re: LDAP and TLS in woody
From: Tommi Virtanen <tv@debian.org>
Date: 21 May 2002 08:53:13 +0300
Message-id: <[🔎] 877klyxd12.fsf@ki.yok.utu.fi>
In-reply-to: <[🔎] Pine.LNX.4.21.0205141553130.2011-100000@fox.mur.at>
References: <[🔎] Pine.LNX.4.21.0205141553130.2011-100000@fox.mur.at>

jogi hofmueller <jogi@mur.at> writes:

> searched all the archives without success, so i am asking here:
> 
> i am starting to set up a centryl LDAP server for various authentication
> purposes. now i would of course like to have the thing using TLS ... and
> found out that slapd in woody (don't know about other versions) does not
> support TLS by default. now, what would i have to do, to get things
> going? is compiling slapd the only way?

	Either wait for a version in sid that does SSL, or recompile
        after changing debian/rules line --without-tls to --with-tls.

        You probably want to tell the daemon to listen to both SSL and
        non-SSL. In /etc/init.d/slapd, do something like

start() {
        echo -n "Starting OpenLDAP: slapd"
        start-stop-daemon --start --quiet --pidfile "$pf" --exec /usr/sbin/slapd \
                -- -h 'ldap:/// ldaps:///'

-- 
tv@{{hq.yok.utu,havoc,gaeshido}.fi,{debian,wanderer}.org,stonesoft.com}
double a,b=4,c;main(){for(;++a<2e6;c-=(b=-b)/a++);printf("%f\n",c);}


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- LDAP and TLS in woody
  - From: jogi hofmueller <jogi@mur.at>

Prev by Date: Re: Secure/hardened/minimal Debian (or "Why is the base system the way it is?")
Next by Date: sendmail, masquerading and HELO
Previous by thread: Re: LDAP and TLS in woody
Next by thread: NOCC: cross-site-scripting bug
Index(es):
- Date
- Thread