[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [Lam-public] ssl not working with ldap-lam

To: Buchan Milne <bgmilne@obsidian.co.za>
Subject: Re: [Lam-public] ssl not working with ldap-lam
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 04 Mar 2004 08:26:28 +0100
Cc: lam-public@lists.sourceforge.net, openldap-software@OpenLDAP.org
In-reply-to: <Pine.LNX.4.33.0403031934030.22922-100000@isis.obsidian.co.za>
References: <Pine.LNX.4.33.0403031934030.22922-100000@isis.obsidian.co.za>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040113

Buchan Milne wrote:

On Wed, 3 Mar 2004, Gémes Géza wrote:
Buchan Milne írta:
Just to clarify some points:
/etc/openldap/ldap.conf belongs to package openldap-clients, and is used
by command line ldap tools, as well as other tools built with libldap,
like gq, directory-administrator, and I think php-ldap, which is used by
both lam and PHPLdapAdmin.
And since libldap2 doesn't require openldap-clients, this is wrong. /etc/openldap/ldap.conf must reside in libldap2 or a package required by libldap2.

I'd consider the attitude of arbitrary LDAP client applications to use a central ldap.conf and even add proprietary extensions to it to be really broken.

BTW. /etc/ldap.conf belongs to nss_ldap, and is used by pam_ldap also.

PADL's stuff is a good example how that leads to misconfiguration and a lot of traffic on the OpenLDAP and PADL mailing lists.

or specify that configs in your ~/.ldaprc. I just simply prefered a
global (for all users an uses) solution.


Which is not feasible all the time.

Ciao, Michael.

References:
- Re: [Lam-public] ssl not working with ldap-lam
  - From: Buchan Milne <bgmilne@obsidian.co.za>

Prev by Date: Re: script MySQL ldap DONE, and some questions
Next by Date: general question on objectclass
Index(es):
- Chronological
- Thread