[Date Prev][Date Next]
Re: problem with openldap ssl client
I would strongly recommend installing the updates. At the minimum you
should install openssh-* apache2-* apparmor* dpkg libgnutls13 ufw
libldap*. I would strongly recommend installing all of these updates as
several are security related. In any case, the updates may help fix
your system. I know the gnutls library contains a fix for you, perhaps
not for a bug you have, but nonetheless a fix is a fix.
On Tue, 2008-07-08 at 17:06 -0400, Sambuddho Chakravarty wrote:
> Hello Pat
> This is what the outptut look like
> Reading package lists... Done
> Building dependency tree
> Reading state information... Done
> Calculating upgrade... Done
> The following NEW packages will be installed:
> linux-image-2.6.24-19-server linux-ubuntu-modules-2.6.24-19-server
> The following packages will be upgraded:
> apache2-mpm-prefork apache2-utils apache2.2-common apparmor
> base-files bash bsdutils dpkg file friendly-recovery initramfs-tools
> ldap-utils libdbus-1-3 libglib2.0-0 libgnutls13 libklibc libldap-2.4-2
> libntfs-3g23 libpam-modules libpam-runtime libparted1.7-1
> linux-libc-dev linux-server lshw mount ntfs-3g openssh-client
> parted pciutils python-central sudo tzdata ufw update-manager-core
> util-linux-locales x11-common
> 42 upgraded, 3 newly installed, 0 to remove and 0 not upgraded.
> Need to get 36.9MB of archives.
> After this operation, 82.0MB of additional disk space will be used.
> Do you want to continue [Y/n]?
> I compiled the openldap-2.4.10 source code on the client (just to make
> sure that if there were some missing libraries , which were present in
> the server otherwise). But problem still persists. There is a new log
> message I see now
> pam_ldap:ldap_set_option(LDAP_OPT_X_TLS_CACERTFILE): Can't contact LDAP
> pam_ldap: _set_ssl_default_options failed
> pam_ldap: ldap_set_option(LDAP_OPT_X_TLS) Can't contact LDAP server
> On Tue, 2008-07-08 at 15:51 -0500, Pat Riehecky wrote:
> > On Tue, 2008-07-08 at 16:45 -0400, Sambuddho Chakravarty wrote:
> > > Hello Pat
> > > I think I am . I did apt-get update and tried a apt-get install
> > > libnss-ldap and it said you already have the latest packages.
> > >
> > Ok, one more thing to check what does the output of
> > apt-get -f dist-upgrade
> > report?
> > Pat
> > > Thanks
> > > Sambuddho
> > > On Tue, 2008-07-08 at 15:39 -0500, Pat Riehecky wrote:
> > > > On Tue, 2008-07-08 at 00:06 -0400, Sambuddho Chakravarty wrote:
> > > > > Hello
> > > > > I have an openldap server running slapd on 636 (LDAPS) . When I connect
> > > > > from a ldap browser , I am able to successfully browse the database.
> > > > > However when I try to connect from a linux client machine (Ubuntu Server
> > > > > 8.04) I am not able to connect to the ldaps. However regular ldap works
> > > > > fine.
> > > >
> > > > There was a problem with the original 8.04 ldap packages (I think it was
> > > > actually gnutls related but memory fails). Are you on the latest and
> > > > greatest packages?
> > > >
> > > > Pat
> > > >
> > >
> > >