>>> Michael Ströder <[email protected]> schrieb am 20.10.2014 um 08:47 in Nachricht <[email protected]>: > Ulrich Windl wrote: >> Related question: If a slapcat of the config database doesn't show a value >> for TLSCipherSuite, does it mean it is some default value? > > > I'm pretty sure the default depends on the TLS lib used and how it was built > for a certain OS.
Does it mean openLDAP has no idea about the default, unless you explicitly set it? > > => always set TLSCipherSuite explicitly > > To find out which protocols/ciphers can be used with a current installation > use sslscan. > > Ciao, Michael.
