[Date Prev][Date Next]
Re: (ITS#4072) Feature request: Don't list StartTLS (188.8.131.52.4.1.1466.20037) if not configured correctly
- To: openldap-its@OpenLDAP.org
- Subject: Re: (ITS#4072) Feature request: Don't list StartTLS (184.108.40.206.4.1.1466.20037) if not configured correctly
- From: firstname.lastname@example.org
- Date: Sun, 9 Oct 2005 17:57:16 GMT
Michael Ströder wrote:
> Howard Chu wrote:
>> email@example.com wrote:
>>> I'd like to propose that StartTLS (220.127.116.11.4.1.1466.20037) is not
>>> listed in
>>> rootDSE's attribute supportedExtension if TLS/SSL is not configured
>> What does "not configured correctly" mean? E.g., if invalid files are
>> used for the cert/key file options, ldap_pvt_tls_init_def_ctx() will
>> fail, and slapd will refuse to startup. What other configurations are
>> you concerned with?
> Well, rather not configured at all but compiled with TLS support.
I guess that makes sense. Done. Please test.
-- Howard Chu
Chief Architect, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc
OpenLDAP Core Team http://www.openldap.org/project/