Stuart, Stuart Davidson wrote: > > I maybe 2 + 2 = 5... but I have the following questions:
Do you have any log from your LDAP server showing whether it received the client certificates and accepted them, or if they were rejected ? As Nelson pointed out, the prior traces showed that the failure to communicate over SSL was due to a server requirement for a client certificate. Even if the ssldump shows a client certificate transmitted, the server could still decide to reject that certificate for some reason - such as the certificate's expiration date, a revoked certificate, or other various application-specific checks. -- "Except for the lack of debugging and the ps thing, [Linux] kernel threads are generally fine right now. And if you're not too fussed about the more fiddly details of POSIX threads, and your application doesn't spend most of its time in thread creation, then LinuxThreads is great too." Linux-Kernel archive