[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Strange TLS issue while upgrading from openldap 2.3 to 2.4

To: openldap-technical@openldap.org
Subject: Re: Strange TLS issue while upgrading from openldap 2.3 to 2.4
From: Guillaume Rousse <guillomovitch@gmail.com>
Date: Tue, 26 Jun 2012 10:27:49 +0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=pz94NO1KIkG7uJSdCmUJ3g/Kvxytda3aWOmGnO9SSV0=; b=GL+7i9UT5Woucuzpn+CnqlfVpLNR30veLUMeLYzVZ+HD/WLJCtI4JO+Y55nqmXdrTt ZVqg7XiV9qCdgaEysoB4vm0TEX3aedRInAZq582smW8P6E+p0YUc0rppVGj96Xcg2y+r OIeD6b4mrMJOPdR+220/tF6aawsMqgIBF2o7fclaRN+AlFJUHL2JF9ZY7o75gt3qNglP U0fnOyDgqp88xOuvsAHQtWxGUAeMRUxD+gU/5euBal+7bkkj37eB0Z8hWbwE7TocQyEM kB4wq1cE1MR8IGkIZwZDSl4nlqoiCrYvX9zwkgZiTzuFmhzvnh8XF86yCGeYR7uvC7Q2 BHDA==
In-reply-to: <6EAAAEC21E699D0AFDA013BD@[192.168.1.38]>
References: <4FE84F9C.5080302@gmail.com> <6EAAAEC21E699D0AFDA013BD@[192.168.1.38]>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:13.0) Gecko/20120616 Thunderbird/13.0.1

Le 25/06/2012 20:06, Quanah Gibson-Mount a écrit :

--On Monday, June 25, 2012 1:46 PM +0200 Guillaume Rousse
<guillomovitch@gmail.com> wrote:

Hello list.

I recently faced a strange issue while upgrading from openldap 2.3 to 2.4
(from centos 5.7 to 6.2, actually): the change was transparent for every
applications excepted Zimbra, for which any authentication attempt was
suffering from an unexplained 30s additional delay. Just switching from
explicit TLS usage on port 389 to explicit SSL usage on port 636 was
enough to fix the issue.


I would use ldapsearch -d -1 to see what function it was hanging in.

Unfortunatly (sort of), I can't reproduce the issue with any otherclient as zimbra itself... ldapsearch works fine, even when run from thesame host as zimbra.


--
BOFH excuse #66:

bit bucket overflow

Follow-Ups:
- Re: Strange TLS issue while upgrading from openldap 2.3 to 2.4
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

References:
- Strange TLS issue while upgrading from openldap 2.3 to 2.4
  - From: Guillaume Rousse <guillomovitch@gmail.com>
- Re: Strange TLS issue while upgrading from openldap 2.3 to 2.4
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: AW: Controlled LDAP Proxy/Relay
Next by Date: Security Deadlock?
Index(es):
- Chronological
- Thread