Full_Name: Ari Suutari
Version: 2.6.2
OS: FreeBSD 3.5
Submission from: (NULL) (195.197.177.229)
I'm running a web site with 'SSLOptions +FakeBasicAuth' to make
information from client certificates available for ldap-based
authentication (using Dave Carrigan's auth_ldap). Everything works
very well, except when a client has a certificate that has
scandinavian characters in subject (this is quite common actually).
The subject is translated to string containing escape sequences
like '\xC4' by mod_ssl & openssl, but ldap doesn't like that,
since it is expecting either unescaped string or something
like '\C4'. So the user's access is denied.
Maybe mod_ssl could have an option which turns escaping off ?
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
