[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: GnuTLS / OpenSSL certificates compatibilty

--On Friday, February 10, 2012 10:18 AM +0100 rey sebastien <reyman64@gmail.com> wrote:

Ok, thanks for answer,
It's really silly to have an official version with GnuTLS if isn't
functionnal :(

GnuTLS is fairly buggy, and also has serious known security issues. GnuTLS support was added at Debian's request, because of their issues with the OpenSSL license. That doesn't fix the fact that GnuTLS in and of itself has issues.

If i change my certificate for gnuTLS generated certificate (i use self
signed certificate..), no need to create a custom OpenLdap with OpenSSL
library ?

It might. I would still suggest you rebuild OpenLDAP so that it is linked to OpenSSL instead of GnuTLS.



Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
Zimbra ::  the leader in open source messaging and collaboration