DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=31443>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=31443 Add TLS Support to mod_ldap ------- Additional Comments From [EMAIL PROTECTED] 2004-09-28 18:44 ------- I have gone ahead and attached a patch that is used on Apache 2.0.51 at my place of work. It adds start tls to apache 2.0.51 (the patch won't apply to 2.1.x). I can tell you that this patch works for us. Oh, it currently only works if you use OpenLDAP. It may be possible to remove the #if APR_HAS_OPENLDAP_SDK from just before the ldap_start_tls_s() and have it work with other SDKs. I really don't know and I have no means to test with other SDKs. This patch adds three new directives: LDAPStartTLS on|off, LDAPCertificateKey <path>, LDAPCertficate <path>. The last two directives are supposed to be useful if your LDAP server is setup to demand verification of clients. Somehow Apache seems to be able to auth with my LDAP server even if I don't set these directives. If anyone knows the reason why this is so please let me know. I hope this patch can be useful. It would be great if this patch or any patch that adds start tls could be included in the apache releases. Thanks. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
