[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slurpd + TSL on Solaris ignores TLS_RANDFILE (ITS#1613)

To: openldap-its@OpenLDAP.org
Subject: Re: slurpd + TSL on Solaris ignores TLS_RANDFILE (ITS#1613)
From: alister@ticklers.org
Date: Wed, 27 Feb 2002 02:58:53 GMT

On Mon, Feb 25, 2002 at 07:32:32PM -0800, Kurt D. Zeilenga wrote:
> slurpd should be using TLS_RANDFILE as set via ldap.conf,
> not via slapd.conf.
> 
> At 09:10 AM 2002-02-25, alister@ticklers.org wrote:
> >Full_Name: Alister Winfield
> >Version: 2.0.23
> >OS: Solaris8
> >URL: ftp://ftp.ticklers.org/openldap_patches/slurpd.patch.20020225
> >Submission from: (NULL) (195.40.7.233)
> >
> >
> >I have been trying to migrate to openldap 2.0.xx and noticed that the TLS 
> >doesn't work for slurpd and other tools. This is due to them ignoring the 
> >option in the config files. I have patched slurpd to look at the TLS_RANDFILE
> >option so it can use an entropy gathering daemon.
> >
> >For those who don't know this helps avoid the "Not enough entropy" error for
> >slurpd on machines that don't have /dev/random.
> 
> 

>From my config.

# $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 1.4.8.6 2000/09/05 17:54:38 kurt Exp $
#
# LDAP Defaults
#

# See ldap.conf(5) for details
# This file should be world readable but not world writable.

BASE    o=easynet.net
#URI    ldap://ldap.example.com ldap://ldap-master.example.com:666

#SIZELIMIT      12
#TIMELIMIT      15
#DEREF          never
TLS_RANDFILE    /var/run/prngd-socket


it fails all things including ldapsearch, slurpd etc.

--
Alister

Prev by Date: Raising a INT signal to stop the slapd daemon causes an infinite loop (ITS#1614)
Next by Date: Re: slurpd + TSL on Solaris ignores TLS_RANDFILE (ITS#1613)
Index(es):
- Chronological
- Thread