[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Basic SASL setup instructions

To: "Howard Chu" <hyc@highlandsun.com>, "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: Basic SASL setup instructions
From: "Jim Hud" <jdhz@btinternet.com>
Date: Wed, 18 Oct 2000 23:57:33 +0100
Cc: <openldap-software@OpenLDAP.org>
References: <39EDA1EE.44232F8F@e-wares.com> <5.0.0.25.0.20001018124111.00a42c50@router.boolean.net>

My 10 cents.

If you configure Netscape for SSL and login and then do not enter anything
in the login prompt box it fails with 0x61.

If you configure for SSL but no login it does not fail.

BUT The verbose log from slapd shows exactly the same sequence, the TLS
write is sending exactly the same sequence of bytes.

Timing is one possibility but it is still down to Netscape.

----- Original Message -----
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
To: "Howard Chu" <hyc@highlandsun.com>
Cc: "Jim Hud" <jdhz@btinternet.com>; <openldap-software@OpenLDAP.org>
Sent: Wednesday, October 18, 2000 8:53 PM
Subject: RE: Basic SASL setup instructions

> At 08:11 AM 10/18/00 -0700, Howard Chu wrote:
> >Clearly there's something wrong with their BER decoding when SSL is in
use.
>
> The problem appears to be a buffer offset problem between the client's
> BER and TLS layers.  I'd have to look at it more carefully to determine
> whether the octets are getting dropped or extra octets are getting
> added between the layers.  In any case, it's looks like a Netscape
> bug and should be reported to Netscape through appropriate channels.
>
> Kurt
>
>

Follow-Ups:
- RE: Basic SASL setup instructions
  - From: "Howard Chu" <hyc@highlandsun.com>

References:
- Re: Basic SASL setup instructions
  - From: Edwin Chiu <Edwin.Chiu@e-wares.com>
- RE: Basic SASL setup instructions
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: graphical LDAP client
Next by Date: Patch for Win32
Index(es):
- Chronological
- Thread