[Date Prev][Date Next]
Re: (ITS#7398) Retrieve LDAP server cert
Hallvard Breien Furuseth wrote:
> I wrote:
>> In OpenSSL, SSL_get_peer_certificate().
> ..after getting the SSL* arg with
> ldap_get_option LDAP_OPT_X_TLS_SSL_CTX.
> Which the manpage recommends not doing. At least
> don't meddle with the SSL* more than you have to.
Hmm, but then the client has to deal with whether libldap is linked to
OpenSSL, libnss or GnuTLS...
Unfortunately in the current project where I'm using web2ldap the python-ldap
libs are linked against the OpenLDAP libs shipped with Debian => GnuTLS.