[Date Prev][Date Next]
Re: slurpd + TSL on Solaris ignores TLS_RANDFILE (ITS#1613)
On Mon, Feb 25, 2002 at 07:32:32PM -0800, Kurt D. Zeilenga wrote:
> slurpd should be using TLS_RANDFILE as set via ldap.conf,
> not via slapd.conf.
> At 09:10 AM 2002-02-25, firstname.lastname@example.org wrote:
> >Full_Name: Alister Winfield
> >Version: 2.0.23
> >OS: Solaris8
> >URL: ftp://ftp.ticklers.org/openldap_patches/slurpd.patch.20020225
> >Submission from: (NULL) (220.127.116.11)
> >I have been trying to migrate to openldap 2.0.xx and noticed that the TLS
> >doesn't work for slurpd and other tools. This is due to them ignoring the
> >option in the config files. I have patched slurpd to look at the TLS_RANDFILE
> >option so it can use an entropy gathering daemon.
> >For those who don't know this helps avoid the "Not enough entropy" error for
> >slurpd on machines that don't have /dev/random.
>From my config.
# $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 18.104.22.168 2000/09/05 17:54:38 kurt Exp $
# LDAP Defaults
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
#URI ldap://ldap.example.com ldap://ldap-master.example.com:666
it fails all things including ldapsearch, slurpd etc.