[Date Prev][Date Next]
(ITS#7645) various TLSProtocolMin issues
Full_Name: Manuel Gaupp
OS: CentOS 6.3
Submission from: (NULL) (126.96.36.199)
This topic was originally discussed in
1.) the TLSProtocolMin parameter is not documented, but it should be - at least
in slapd.conf/slapd-config and ldap.conf (there is an example in the original
2.) the TLSProtocolMin functionality should be extended for TLS 1.1 and TLS 1.2
3.) ldap.conf already accepts correctly formatted TLSProtocolMin values (e.g.
"3.1") whereas slapd.conf doesn't (has to be given as an integer, e.g. "769"); I
think servers/slapd/bconfig.c should be changed to use ldap_int_tls_config for
this option (as mentioned in the FIXME comment of config_tls_config).