LDAP over SSL does not work with Ubuntu Prolonged Pain

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Jun 1 13:28:23 CEST 2012

On Thu, May 31, 2012 at 2:24 PM, Thorsten Glaser <t.glaser at tarent.de> wrote:

> In the meanwhile, I tested this patch on Debian squeeze (exemplarily;
> lenny is also affected), *buntu hardy, lucid, oneiric and precise,
> and it works (turns out the older versions are also affected). I only
> had thought it to be a regression since we used to have
>        TLS_CACERT      /etc/ssl/certs/dc.lan.tarent.de.cer
> in our /etc/ldap/ldap.conf, and my coworker’s new setup places the
> whole ca-certificates.crt file there, instead of just the certificate
> of the CA who signed the LDAP servers’ certs.


> There’s a comment typo (isser instead of issuer) and a few occurences of
> trailing whitespace in the patch. </nitpick-mode>

I'll correct it.


More information about the Gnutls-help mailing list