[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re[2]: TLS or plain?

To: openldap-software@OpenLDAP.org
Subject: Re[2]: TLS or plain?
From: Richard Welty <rwelty@averillpark.net>
Date: Mon, 21 Jul 2003 16:03:46 -0400 (EDT)
Content-disposition: INLINE
In-reply-to: <OF92A7C85F.AB9124C5-ON87256D6A.0066A0E9-86256D6A.00668B50@us.ibm.com>
References: <OF92A7C85F.AB9124C5-ON87256D6A.0066A0E9-86256D6A.00668B50@us.ibm.com>

On Mon, 21 Jul 2003 13:45:51 -0500 Kent Soper <dksoper@us.ibm.com> wrote:
> Michael Stroeder writes:
 
> > If you use ldaps:// depending on the client and
> > server configuration you can either use SSL or TLS.
 
> If the server is configured correctly (and the client too if
> TLSVerifyClient is set), then the ldaps:// port is using SSL.
 
> However,
> ldaps://   +   TLS   =   broken pipe error (not good)

exactly.

SSLv3 and TLS are _nearly_ identical. the differences are just enough to
prevent them from interoperating.

richard
--
Richard Welty                                         rwelty@averillpark.net
Averill Park Networking                                         518-573-7592
    Java, PHP, PostgreSQL, Unix, Linux, IP Network Engineering, Security

References:
- Re: TLS or plain?
  - From: Kent Soper <dksoper@us.ibm.com>

Prev by Date: Re: Error searching DNs with escaped special characters
Next by Date: Re: Email Distribution Lists???
Index(es):
- Chronological
- Thread