[Date Prev][Date Next]
Re: (ITS#8385) Use After Free of struct ldap_common in slap_client_connect
- To: openldap-its@OpenLDAP.org
- Subject: Re: (ITS#8385) Use After Free of struct ldap_common in slap_client_connect
- From: firstname.lastname@example.org
- Date: Tue, 15 Mar 2016 01:05:14 +0000
- Auto-submitted: auto-generated (OpenLDAP-ITS)
--On Tuesday, March 15, 2016 1:34 AM +0000 email@example.com wrote:
> Content-Type: text/plain; charset=UTF-8
> Howard, thank you very much for quickly fixing this issue. My tests show
> that the replication is now working fine.
> Regarding your recommendation of OpenSSL, that should rather go to
> OpenLDAP package maintainers at Ubuntu and Debian. I use what they build
> and the choice of the TLS library is not mine.
The Debian/Ubuntu maintainers are quite aware of the problems with using
GnuTLS, and maintain they cannot use OpenSSL due to licensing issues,
despite the fact every other major distribution uses OpenSSL (except RHEL,
which switched to MozNSS which resulted in much disaster, and is likely
going to switch back to OpenSSL).
There is no reason you cannot use OpenSSL, regardless of what
Debian/Ubuntu's broken decisions are.
Zimbra :: the leader in open source messaging and collaboration
A division of Synacor, Inc