[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS still works not proper.

To: Oliver Hoffmann <oliver.hoffmann@uw-service.de>
Subject: Re: TLS still works not proper.
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 30 Jun 2004 09:54:51 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <200406301133.45031.oliver.hoffmann@uw-service.de>
References: <200406301133.45031.oliver.hoffmann@uw-service.de>

At 02:33 AM 6/30/2004, Oliver Hoffmann wrote:
>The extra Z changed nothing. It's still the same output.
>The HOWTO sais:
>"The single "-Z" flag tries to enable TLS and will proceed without using 
>encrypted connections if the TLS handshake fails."

That wording is misleading (I suggest you report that to the
author).  See the ldapsearch(1) description of -Z v. -ZZ.

>That confuses me. If TLS fails it should show me the same result I can see 
>with the normal search command, shouldn't it? 

You confuse failure of the LDAP Start TLS operation and
failure within TLS.

Kurt

References:
- TLS still works not proper.
  - From: Oliver Hoffmann <oliver.hoffmann@uw-service.de>

Prev by Date: Re: explaining LDAP and TLS
Next by Date: make test error
Index(es):
- Chronological
- Thread