[389-devel] please review: Ticket 47941 - openldap - set TLS protocol version in LDAP client library used by server

[Howard Chu]

Date: Fri, 07 Nov 2014 16:57:11 -0500
From: Mark Reynolds marey...@redhat.com
To: 389 Directory server developer discussion.
389-devel@lists.fedoraproject.org
Subject: [389-devel] please review: Ticket 47941 - openldap - set TLS
protocol version in LDAP client library used by server
Message-ID: 545d4037.4040...@redhat.com
Content-Type: text/plain; charset=utf-8

https://fedorahosted.org/389/ticket/47941

https://fedorahosted.org/389/attachment/ticket/47941/0001-Ticket-47941-set-TLS-protocol-version-in-LDAP-client.patch


Strictly speaking, the bug report is incorrect - you can set any libldap 
option, including TLS_PROTOCOL_MIN, using environment variables, ldap.conf 
files, or ldaprc files. All as documented in ldap.conf(5) manpage.


--
  -- Howard Chu
  CTO, Symas Corp.   http://www.symas.com
  Director, Highland Sun http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/
--
389-devel mailing list
389-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-devel

Re: [389-devel] please review: Ticket 47941 - openldap - set TLS protocol version in LDAP client library used by server

[Mark Reynolds]

On 11/08/2014 08:06 AM, Howard Chu wrote:
 Strictly speaking, the bug report is incorrect - you can set any
 libldap option, including TLS_PROTOCOL_MIN, using environment
 variables, ldap.conf files, or ldaprc files. All as documented in
 ldap.conf(5) manpage. 
Howard,

You are correct, I think the description was trying to say that
TLS_PROTOCOL_MIN had no effect with NSS  openldap.  I will revise the
bug report.

Regards,
Mark
--
389-devel mailing list
389-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-devel