[Bug 306293] Re: Mod_ssl randomly causes apache threads to use 100% of CPU
Confirming fix in apache2 2.2.8-1ubuntu0.9. It was tested in simulated, and also in work environment. Thank you all. -- Mod_ssl randomly causes apache threads to use 100% of CPU https://bugs.launchpad.net/bugs/306293 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 249881] Re: Hardy slapd server is not supporting sasl/external authentication
Got it working: ldapsearch -x -H ldaps:/// -b "" -LLL -s base supportedSASLMechanisms dn: supportedSASLMechanisms: CRAM-MD5 supportedSASLMechanisms: NTLM supportedSASLMechanisms: LOGIN supportedSASLMechanisms: DIGEST-MD5 supportedSASLMechanisms: PLAIN supportedSASLMechanisms: EXTERNAL Tks Mathias -- Hardy slapd server is not supporting sasl/external authentication https://bugs.launchpad.net/bugs/249881 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 249881] Re: Hardy slapd server is not supporting sasl/external authentication
Attaching certificates I'm using. The new_client.crt is the last one created with same country/city/firm/OU etc., no e-mail address. ** Attachment added: "certificates.tar.gz" http://launchpadlibrarian.net/17567761/certificates.tar.gz -- Hardy slapd server is not supporting sasl/external authentication https://bugs.launchpad.net/bugs/249881 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 249881] Re: Hardy slapd server is not supporting sasl/external authentication
Same result here. I copied the files to /etc/ssl/certs and /etc/ssl/private, modified /etc/ldap/slapd.conf to show the new places of the files, /home/ubuntu/.ldaprc was also modified to point to /etc/ssl/certs/ca.cert. There wasn't group ssl-certs, so I created it, (vigr, vigr -s, GID 114) and added user openldap to the group. The directory /etc/ssl/private was 700 root:root, so I changed it to 750 root:ssl-cert, otherwise slapd cannot start. Running slapd by "/etc/init.d/slapd start" doesn't show EXTERNAL. slapd in that case is started with group and user openldap. Even when slapd was run manually with group ssl-cert there wasn't EXTERNAL protocol listed as supported. id for user openldap shows groups openldap and ssl-cert. -- Hardy slapd server is not supporting sasl/external authentication https://bugs.launchpad.net/bugs/249881 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 249881] Re: Hardy slapd server is not supporting sasl/external authentication
I got the problem again: # Creating self-signed sertificate openssl genrsa -out ca.key 2048 openssl req -new -x509 -days 365 -key ca.key -out ca.crt # Create server key and request openssl genrsa -out server.key 2048 openssl req -new -key server.key -out server.csr # Sign server request openssl x509 -req -days 365 -in server.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out server.crt # Create client key and request openssl genrsa -out client.key 2048 openssl req -new -key client.key -out client.csr # Sign client key openssl x509 -req -days 365 -in client.csr -CA ca.crt -CAkey ca.key -set_serial 02 -out client.crt # The files: -rw-r--r-- 1 root root 1700 2008-09-04 19:44 ca.crt -rw-r--r-- 1 root root 1679 2008-09-04 19:42 ca.key -rw-r--r-- 1 root root 1342 2008-09-04 21:52 client.crt -rw-r--r-- 1 root root 1086 2008-09-04 21:52 client.csr -rw-r--r-- 1 root root 1675 2008-09-04 19:52 client.key -rw-r--r-- 1 root root 1342 2008-09-04 21:51 server.crt -rw-r--r-- 1 root root 1086 2008-09-04 21:51 server.csr -rw-r--r-- 1 root root 1675 2008-09-04 19:46 server.key # Configuration files: # /home/ubuntu/.ldaprc TLS_CACERT /root/ca.crt TLS_CERT /home/ubuntu/client.crt TLS_KEY /home/ubuntu/client.key # /etc/ldap/slapd.conf TLSCACertificateFile /root/ca.crt TLSCertificateFile /root/server.crt TLSCertificateKeyFile /root/server.key TLSVerifyClient demand # Search ldapsearch -x -H ldaps:/// -b -LLL -s base supportedSASLMechanisms # Result dn: supportedSASLMechanisms: NTLM supportedSASLMechanisms: CRAM-MD5 supportedSASLMechanisms: DIGEST-MD5 supportedSASLMechanisms: LOGIN supportedSASLMechanisms: PLAIN -- Hardy slapd server is not supporting sasl/external authentication https://bugs.launchpad.net/bugs/249881 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 249881] Re: Hardy slapd server is not supporting sasl/external authentication
** Changed in: openldap (Ubuntu) Sourcepackagename: None => openldap -- Hardy slapd server is not supporting sasl/external authentication https://bugs.launchpad.net/bugs/249881 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs