[Date Prev][Date Next]
Re: TLS CA Chain Problem
Brett @Google schrieb:
Have a look at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=517188
Openldap in Lenny is linked against GNUtls instead of openssl. GNUtls doesn't support the
TLS_CACERTDIR configuration option, so we have to use TLS_CACERT to specify a file with
trusted CA certificates.
GNUtls is not the same as openssl, if you are affected by this bug
then it will only load the first cert.
Yes this seems to affect me too. So I'll have to recompile against
openssl I guess. I can live with that.