[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Password protection of TLS key

To: Quanah Gibson-Mount <quanah@zimbra.com>
Subject: Re: Password protection of TLS key
From: Howard Chu <hyc@symas.com>
Date: Fri, 20 Feb 2009 12:48:31 -0800
Cc: Gavin Henry <ghenry@OpenLDAP.org>, openldap-technical@OpenLDAP.org
In-reply-to: <53D933A0CDA66C1D8319F836@[192.168.1.199]>
References: <1976678.111235121640246.JavaMail.root@mail> <53D933A0CDA66C1D8319F836@[192.168.1.199]>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; rv:1.9.1b3pre) Gecko/20090216 SeaMonkey/2.0a1pre Firefox/3.0.3

Quanah Gibson-Mount wrote:

--On Friday, February 20, 2009 9:20 AM +0000 ghenry@OpenLDAP.org wrote:

No really good ideas come to mind. I have a patch for libldap to
explicitly
set a callback to supply the key password, it won't make it into
2.4.13 but
probably will be in 2.4.14. I will probably add two options to slapd,

Hi,

Did this make it into 2.4.14? I've checked the CHANGES and can't see
anything mentioned re libldap?

Not so far. There probably should be an ITS filed on this by Howard.

I had to postpone it since we did the TLS code restructuring. I also don't yet know how to do the equivalent for GnuTLS, will have to do some other research before addressing this again.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Follow-Ups:
- Re: Password protection of TLS key
  - From: Gavin Henry <ghenry@suretecsystems.com>

References:
- Re: Password protection of TLS key
  - From: ghenry@OpenLDAP.org
- Re: Password protection of TLS key
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: Password protection of TLS key
Next by Date: Re: Password protection of TLS key
Index(es):
- Chronological
- Thread