[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Only Openldap 2.1.x support TLS ?

To: Howard Chu <hyc@highlandsun.com>
Subject: RE: Only Openldap 2.1.x support TLS ?
From: Tony Earnshaw <tonni@billy.demon.nl>
Date: 12 Nov 2002 06:17:23 +0100
Cc: zhfei@sdb.ac.cn, openldap-software@OpenLDAP.org
In-reply-to: <007c01c289cc$9c567280$0e01a8c0@CELLO>
References: <007c01c289cc$9c567280$0e01a8c0@CELLO>

man, 2002-11-11 kl. 22:52 skrev Howard Chu:

> > AFAIk, after communication with others and having been on
> > this list for
> > a while, 2.0.x has no encryption (SSL or TLS) or otherwise advanced
> > authentication possibility and has to use /usr/sbin/stunnel for
> > encrypted connections (man stunnel), whilst 2.1.x has a *lot* of added
> > functionality, including full SASL.

> No. 2.0.x and 2.1.x have mostly identical support for SSL/TLS, it's just that
> the man pages and admin guide never got updated with these features in 2.0.
> There are probably some bug fixes in 2.1 tls.c that never made it back to 2.0
> but for the most part they're the same. All the TLS configuration keywords
> documented for ldap.conf and slapd.conf in 2.1 are identical in 2.0. 2.1 has
> much better support for SASL/EXTERNAL though.

I'll take that on board, thanks!

Best,

Tony

-- 

Tony Earnshaw

Cricketers are strange people. They wake up
in October, only to find that their wives had
left them in May.

e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl

Follow-Ups:
- Re: Only Openldap 2.1.x support TLS ?
  - From: "Marius Cabas" <marius_cabas@hotmail.com>

References:
- RE: Only Openldap 2.1.x support TLS ?
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Re: Performance Problems
Next by Date: RE: decoding modlist error
Index(es):
- Chronological
- Thread