--On November 14, 2014 at 1:30:10 AM + Viktor Dukhovni
openssl-us...@dukhovni.org wrote:
On Thu, Nov 13, 2014 at 04:57:25PM -0800, Quanah Gibson-Mount wrote:
It would be cool to have the Net::SSLeay
code as well, however, for other tests I'd like to set up.
Attached. You'll need a
Like it or not, s_client is generally the de facto tool for testing
starttls via the openssl command line.
In addition, the work to add support for startTLS and ldap is rather
trivial, and has already been done:
https://groups.google.com/forum/#!topic/mailing.openssl.users/1OOwXp45iIw
It
On Thu, Nov 13, 2014 at 06:04:18PM +0100, Quanah Gibson-Mount via RT wrote:
Like it or not, s_client is generally the de facto tool for testing
starttls via the openssl command line.
In addition, the work to add support for startTLS and ldap is rather
trivial, and has already been done:
--On November 13, 2014 at 5:45:22 PM + Viktor Dukhovni
openssl-us...@dukhovni.org wrote:
Personally, I would prefer to see support for reporting TLS features
of LDAP servers as a verbosity feature in ldapsearch or similar.
It's already scheduled to go into OpenLDAP. Can't talk for
On Thu, Nov 13, 2014 at 01:04:31PM -0800, Quanah Gibson-Mount wrote:
Personally, I would prefer to see support for reporting TLS features
of LDAP servers as a verbosity feature in ldapsearch or similar.
It's already scheduled to go into OpenLDAP. Can't talk for other LDAP
projects. I.e.,
On Mon, Sep 01, 2014 at 10:02:16AM -0400, Salz, Rich wrote:
My point is that since stunnel has a different goal of wrapping
almost any protocol, that might be a better place for it, rather
than going down the slippery slope of putting a binary hack into
s_client which wouldn't let you
- Original Message -
From: Rich Salz via RT r...@openssl.org
To: r...@king7.com
Cc: openssl-dev@openssl.org
Sent: Wednesday, August 27, 2014 5:39:33 AM
Subject: [openssl.org #2665] s_client support for starttls ldap
s_client is really for text-based protocols only.
It still would
What about usoing stunnel?
On Mon, Sep 01, 2014 at 09:40:55AM -0400, Salz, Rich wrote:
What about usoing stunnel?
Stunnel's STARTTLS support does not include LDAP as the initial
protocol.
--
Viktor.
__
OpenSSL Project
My point is that since stunnel has a different goal of wrapping almost any
protocol, that might be a better place for it, rather than going down the
slippery slope of putting a binary hack into s_client which wouldn't let you
actually USE the protocol.
s_client is really for text-based protocols only.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Current OS: CentOS release 5.5 (Final) (RHEL5_64)
Currentl openssl version: 1.0.0e
Would it be possible to support s_client for starttls connections for ldap?
i.e.
openssl s_client -connect mail.domain.com:389 -starttls ldap
Best Regards,
--
Rick King
12 matches
Mail list logo