[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: slurpd + TSL on Solaris ignores TLS_RANDFILE (ITS#1613)
On Mon, Feb 25, 2002 at 07:32:32PM -0800, Kurt D. Zeilenga wrote:
> slurpd should be using TLS_RANDFILE as set via ldap.conf,
> not via slapd.conf.
>
> At 09:10 AM 2002-02-25, alister@ticklers.org wrote:
> >Full_Name: Alister Winfield
> >Version: 2.0.23
> >OS: Solaris8
> >URL: ftp://ftp.ticklers.org/openldap_patches/slurpd.patch.20020225
> >Submission from: (NULL) (195.40.7.233)
> >
> >
> >I have been trying to migrate to openldap 2.0.xx and noticed that the TLS
> >doesn't work for slurpd and other tools. This is due to them ignoring the
> >option in the config files. I have patched slurpd to look at the TLS_RANDFILE
> >option so it can use an entropy gathering daemon.
> >
> >For those who don't know this helps avoid the "Not enough entropy" error for
> >slurpd on machines that don't have /dev/random.
>
>
>From my config.
# $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 1.4.8.6 2000/09/05 17:54:38 kurt Exp $
#
# LDAP Defaults
#
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
BASE o=easynet.net
#URI ldap://ldap.example.com ldap://ldap-master.example.com:666
#SIZELIMIT 12
#TIMELIMIT 15
#DEREF never
TLS_RANDFILE /var/run/prngd-socket
it fails all things including ldapsearch, slurpd etc.
--
Alister