[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Q: TLS support

--On Tuesday, July 16, 2013 8:17 AM +0200 Ulrich Windl <Ulrich.Windl@rz.uni-regensburg.de> wrote:


I have some questions on TLS support in OpenLDAP:

1) How can I find out which cipher suite had been configured (when using
the distribution-supplied version)? From ldd I guess my slapd is using

If specific cipher suites have been configured, it would be in the slapd configuration. Otherwise, they'll be negotiated.

2) Is the restriction ("This directive is not supported when using
GnuTLS.") on TLSCACertificatePath and GunTLS still effective? I'd like to
use it, but I'm unsure what the cipher suite is.

Why would you want to use an inferior and insecure TLS implementation?



Quanah Gibson-Mount
Lead Engineer
Zimbra, Inc
Zimbra ::  the leader in open source messaging and collaboration