[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: fedora and openldap

To: Judith Flo Gaya <jflo@imppc.org>
Subject: Re: fedora and openldap
From: Aaron Richton <richton@nbcs.rutgers.edu>
Date: Thu, 14 Apr 2011 13:08:24 -0400 (EDT)
Cc: "richm@stanfordalumni.org" <richm@stanfordalumni.org>, Rich Megginson <rich.megginson@gmail.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <4DA7271D.2040702@imppc.org>
References: <4D9B87A2.8040400@imppc.org> <201104091723.01247.harry.jede@arcor.de> <4DA2CE65.70006@imppc.org> <201104111314.34875.harry.jede@arcor.de> <4DA4876E.7000907@imppc.org> <38ACE42D42C9413E24A03D6F@[192.168.1.2]> <4DA4A479.70404@imppc.org> <4DA4ACCD.4010501@gmail.com> <4DA4B394.6060107@imppc.org> <4DA4B514.1020404@gmail.com> <4DA582B7.5070907@imppc.org> <4DA5A137.6020007@gmail.com> <4DA5B2E3.7010407@imppc.org> <4DA5B521.8050908@gmail.com> <4DA5BAEE.7060603@imppc.org> <alpine.SOC.2.00.1104131351350.2565@toolbox.rutgers.edu> <4DA5F307.9020606@imppc.org> <alpine.SOC.2.00.1104131501480.2565@toolbox.rutgers.edu> <4DA71659.3050602@imppc.org> <4DA7271D.2040702@imppc.org>
User-agent: Alpine 2.00 (SOC 1167 2008-08-23)

On Thu, 14 Apr 2011, Judith Flo Gaya wrote:

Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 fd=12 ACCEPT fromIP=[::1]:36208 (IP=[::]:636)Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 fd=12 TLS establishedtls_ssf=256 ssf=256Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 op=0 EXToid=1.3.6.1.4.1.1466.20037
Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 op=0 STARTTLS
Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 op=0 RESULT oid= err=1 text=TLSalready started
Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 op=1 UNBIND
Apr 14 18:54:34 curri0 slapd[2010]: conn=1019 fd=12 closed

So you're trying to issue a StartTLS operation over an implicit SSLconnection? There's no point to starting encryption on a connection that'salready encrypted (hence the error). Either combine:


a cleartext port (i.e. 389) with the StartTLS operation

or

an SSL port (i.e. 636) with NO StartTLS operation.

Follow-Ups:
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>

References:
- fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: harry.jede@arcor.de
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: harry.jede@arcor.de
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Rich Megginson <rich.megginson@gmail.com>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Rich Megginson <rich.megginson@gmail.com>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Rich Megginson <rich.megginson@gmail.com>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Rich Megginson <rich.megginson@gmail.com>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Aaron Richton <richton@nbcs.rutgers.edu>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Aaron Richton <richton@nbcs.rutgers.edu>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>
- Re: fedora and openldap
  - From: Judith Flo Gaya <jflo@imppc.org>

Prev by Date: Re: fedora and openldap
Next by Date: Re: fedora and openldap
Index(es):
- Chronological
- Thread