Full_Name: Quanah Gibson-Mount
Version: 2.4.49
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.236)
After discussion with Howard, slapo-memberOf should be replication compatible on
REFRESH as long as the dangling option is set to ignore.
The man page should
Thanks for the report, suggested fix has been applied.
Regards,
Quanah
--On Friday, February 21, 2020 8:38 PM + lha...@meditech.com wrote:
> --3b4d37059f1c0189
> Content-Type: text/plain; charset="UTF-8"
> Content-Transfer-Encoding: quoted-printable
>
&g
is ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, February 13, 2020 4:50 PM + bananashake2...@yahoo.de
wrote:
> Full_Name: Stefan Koch
> Version: 2.4.44
Hello,
The 2.4.44 release is over 4 years old. Please use a current OpenLDAP
release prior to reporting bugs. This ITS will be closed.
Regards,
Quanah
--
tions such as
this. This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, February 6, 2020 8:47 PM + qua...@openldap.org wrote:
> This appears to be because they (IMHO) incorrectly SUP monitoredInfo or
> monitorCounter
Or, thinking on it further, I think this is ok, just not what I expected.
I'll close the ITS. ;)
--Quanah
--
Quanah
Full_Name: Quanah Gibson-Mount
Version: 2.4.49
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.236)
The new additions to back-monitor to expose more data from back-mdb are
returning unrequested attributes. For example:
ldapsearch -x -LLL -H ldap:/// -s base -b
with an already broken
database. This ITS will be closed.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
>
>
> The FOSS server fossies.org - also supporting "OpenLDAP" - offers a new
> feature "Source code misspelling reports":
This is very nice, thank you. Definitely some items in here that need
fixing.
Regards,
Quanah
--
Quanah Gibson-Mount
Product
--On Thursday, January 30, 2020 2:38 PM +0530 Vijay Kumar
wrote:
>
>
> Thank you Quanah,
>
> I am not familiar about your process of subscribing to lists.
> I have gone though the documentation to understand the mdb size for
> windows. Can you please share me the do
on. This system is for bug reports only.
> No reply to us.!
I did reply. This is clearly shown in the ITS.
> Please let us know answer to solve a issue.!
I already provided you the answer in my earlier response. Set an
approprate maxsize setting, the default of 10MB is clearly too low.
Reg
e parameter determines what the allowed maximum size of
the database is. If you do not set the parameter, it limits the database
to 10MB in size (The default value).
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions
Full_Name: Quanah Gibson-Mount
Version: HEAD
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
If you configure autoca via cn=config when the underlying DB does not yet exist,
slapd will crash.
i.e., I added this entry to my cn=config db:
dn: olcOverlay
ld,
you'll need to dig deeper into the issues, as you're a bit outside of what
Debian/Ubuntu do with OpenLDAP.
I would note that at least for Ubuntu 18, there is already a backport
provided of the 2.4.48 release that does not appear to exhibit the issues
you describe.
Regards,
Quanah
-
advise
contacting the Debian/Ubuntu project and their GnuTLS package maintainers
specifically.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, December 19, 2019 9:36 PM + qua...@openldap.org wrote:
> Full_Name: Quanah Gibson-Mount
> Version: 2.4.48
> OS: N/A
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (47.208.143.26)
>
>
> In 2005, ICU library detection was added to th
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
In 2005, ICU library detection was added to the build process, however nothing
was ever added to use it. This can result in an unwanted dependency when
building
nly. Questions about OpenLDAP
functionality should be directed to the openldap-technical mailing list.
Your log shows no issues.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, December 5, 2019 9:27 PM + "Sun, Wei"
wrote:
> It seems to be that on the 2.4.48 release, in file tls2.c,
> LDAP_USE_NON_BLOCKING_TLS is tied to LDAP_DEVEL, however, on the main
> branch, it is enabled by default?
Because it is a 2.5 feature.
Regards,
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
When testing an slapadd import with back-mdb as the database backend, it errors
out incorrectly with a unknown attribute error:
slapadd -F /tmp/slapd.d -l slapd
Full_Name: Quanah Gibson-Mount
Version: 2.4
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
There are some enhancements to dynlist that would make it more
useful/versatile:
a) Be able to do (unique)member= searches to find all groups a given group
member
Full_Name: Quanah Gibson-Mount
Version: 2.4.43
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
When querying the monitor backend for monitorOpCompleted, the results are
inconsistent. The code that calculates this value is also inefficient
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: FreeBSD 11
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.143.26)
To improve back-mdb performance on LMDB when dbnosync is set, it would be useful
to support MAP_NOSYNC as documented at
http://nixdoc.net/man-pages/FreeBSD
e redirect your
question to the openldap-technical list for further assistance.
<https://www.openldap.org/lists/mm/listinfo/openldap-technical>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions power
e redirect your
question to the openldap-technical list for further assistance.
<https://www.openldap.org/lists/mm/listinfo/openldap-technical>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
quests. Please redirect your
question to the openldap-technical list for further assistance.
<https://www.openldap.org/lists/mm/listinfo/openldap-technical>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Monday, October 28, 2019 2:33 AM + ydgd...@163.com wrote:
> Full_Name: Nannan Song
I would ask in the future that you not spam the bug system with 8 copies of
the same report.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and suppor
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.154.120)
The slapd.conf(5)/slapd-config(5) man pages contain this wording for the
sasl-secprops keyword:
0 (zero) implies no protection, 1 implies integrity
--On Friday, October 25, 2019 10:09 PM + qua...@openldap.org wrote:
> Full_Name: Quanah Gibson-Mount
> Version: 2.4.48
> OS: N/A
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (47.208.154.120)
>
>
> The slapd.conf(5)/slapd-config(5) man
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.154.120)
The slapd.conf(5)/slapd-config(5) man pages list the security/olcSecurity
configuration option as a "GLOBAL" only config option.
However, inspection o
4.48 to pick up this fix:
Fixed slapd-meta assertion when network interface goes down (ITS#8841)
--Quaanh
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
Decoded we have:
"I have changed back-meta to the back-ldap, and it resolved this problem."
--On Tuesday, September 24, 2019 11:59 AM + i.har...@a1.by wrote:
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered b
org/support/>
This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Friday, September 27, 2019 10:50 AM + Rajalakshmi Jayaraman
wrote:
>
>
> Hi Quanah,
>
> Can we have a solution for the issue reported at the earliest. Since we
> have a release and the fix needs to be done.
Hello Raji,
If you need an immediate fix to an i
--On Thursday, September 26, 2019 3:11 PM + Rajalakshmi Jayaraman
wrote:
>
>
> Hi,
>
> The FTP "ftp://ftp.openldap.org/incoming/; is not working. Hence pasted
> the pcap details, hope this helps
It's working just fine:
quanah@ub18:~$ ftp ftp.openldap.org
Connec
l. (pl. find attached the pcap) for
> reference
Please put your pcap file on the FTP server rather than sending it via the
ITS system. Then respond to the ITS with a link to the file.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supporte
.org/documentation/openldap-rpm#yum_repository>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
nldap.org/lists/mm/listinfo/openldap-technical>
<https://www.openldap.org/lists/openldap-technical/>
<https://www.openldap.org/lists/openldap-technical/201908/msg00157.html>
This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packag
--On Friday, September 13, 2019 6:07 PM + g...@nxg.name wrote:
> Full_Name: Norman Gray
> Version: 2.4.48
> OS: FreeBSD 12.0
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (130.209.45.140)
Note: this is now ITS#9079.
--Quanah
--
Quanah Gibson-Mount
Pr
/mm/listinfo/openldap-technical>
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Friday, September 13, 2019 4:34 PM + g...@nxg.name wrote:
> Full_Name: Norman Gray
> Version: 2.4.48
> OS: FreeBSD 12.0
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (130.209.45.140)
Unrelated side note, ITS number fixed to be 9077.
--Quanah
--
op filing ITSes until such a time as you have upgraded to a current
release.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
nldap.org/lists/mm/listinfo/openldap-technical>
This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
When converting this basic slapd.conf for back-ldap:
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema
ldap browser, but after
> restart sldap daemon, custom attrs are missing (sorry, bad english)
> OLC mode and mdb database
Hello,
That is not the correct way to modify the schema or add new attributes.
Please use the openldap-techni...@openldap.org list for help. This ITS
will be closed.
Rega
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
The slapo-ppolicy(5) man page has this statement in the description of
pwdGraceUseTime:
If too many grace logins have been used (please refer
sed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Sunday, August 11, 2019 7:34 PM + zag...@oclc.org wrote:
> Would you please consider changing this to:
>
> TMP=${TMPDIR-/tmp}/mkdep$$
Thanks for the report, this is fixed in OpenLDAP master.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Full_Name: Quanah Gibson-Mount
Version: 2.4.48
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
When looking at the man pages, the tls_reqcert description in the section of the
man page about syncrepl is missing a BOLD tag, unlike the other keywords.
Trivial
ckports repo.
This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, August 01, 2019 4:16 PM + qua...@openldap.org wrote:
> Full_Name: Quanah Gibson-Mount
> Version: 2.4.47
> OS: N/A
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (47.208.128.44)
>
>
> In investigating why a particular consumer went i
Full_Name: Quanah Gibson-Mount
Version: 2.4.47
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
In investigating why a particular consumer went into REFRESH mode, I find that
this was triggered by one of its providers currently parsing a sessionlog
--On Wednesday, July 24, 2019 3:45 PM -0700 Quanah Gibson-Mount
wrote:
> For informational purposes, here's additional detail as the subject and
> original problem description do not fully capture the extend of the
> problem. In all 2.x releases prior to 2.4.48 (I.e., 2.0.x, 2.1
to attrs=userPassword
by self sasl_ssf=56 =xw
by * auth
Would allow a user to change their own password whether or not they had
performed a SASL bind with a sasl_ssf of 56.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions
ema on replicas first, then on masters
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
//bugzilla.redhat.com/show_bug.cgi?id=699576>
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
bmit patches that depend on
custom RedHat implementations of core libraries.
Thanks.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
of
the time slice is of course a security issue and should not be allowed by
default (So the default value of the parameter should be 0).
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Tuesday, July 16, 2019 9:45 PM + qua...@openldap.org wrote:
> Full_Name: Quanah Gibson-Mount
> Version: 2.4.47
> OS: N/A
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (47.208.128.44)
>
>
> Currently OpenLDAP only allows for a single EECD
Full_Name: Quanah Gibson-Mount
Version: 2.4.47
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
Currently OpenLDAP only allows for a single EECDH curve to be configured.
However, OpenSSL 1.0.2 released in January 2015 was the first release to
implement
: reqStart=20190709001033.00Z,cn=accesslog
objectClass: auditBind
reqStart: 20190709001033.00Z
reqEnd: 20190709001033.01Z
reqType: bind
reqSession: 1019
reqAuthzID:
reqDN: cn=admin,dc=rb,dc=symas,dc=net
reqResult: 0
reqVersion: 3
reqMethod: SIMPLE
--Quanah
--
Quanah Gibson-Mount
Full_Name: Quanah Gibson-Mount
Version: 2.4.47
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
In testing out various logging scenarios with the accesslog overlay, it has been
found that it fails to log certain operations in the underlying accesslog DB
( 64 * 1024 * 1024 * sizeof(void *) )
Generally, this feature is simply unusuable (currently) as a tunable given
the requirement for recompiling OpenLDAP to use it.
--QUanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered
constants.
Had a customer who was hitting this issue try out these patches -- It
greatly decreases the search time (from unknown/infinite to 1 minute).
Unfortunately slapd then segv's. Working on getting a test database to
reproduce the issue with for a good backtrace.
--Quanah
--
Quanah Gib
Hello,
Unfortunately this patch introduces a regression and breaks existing
configurations where the protocol in use is ldaps:///.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<h
9-06-27T20:46:07.613718+00:00 arrakis slapd-2.4-aa[14682]: conn=1011
> fd=12 closed (TLS negotiation failure)
Thanks! Please include the openldap-its list in your replies so that they
properly get associated with the relevant ITS. I'll raise this up as a
priority for the 2.4.48 release.
re noted on the openldap-devel list as well.
Does the issue persist if you set:
olcDbStartTLS: ldaps
as documented in the slapd-ldap(5) man page?
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, June 27, 2019 8:35 PM + h...@symas.com wrote:
> No, because order is irrelevant for these.
Cool, thanks! I'll continue on with deeper testing then. :)
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP soluti
:19 'olcDatabase={0}config.ldif'
-rw--- 1 root root 859 Jun 27 12:19 'olcDatabase={1}mdb.ldif'
I.e., I was rather expecting:
olcBackend={1}mdb.ldif
or similar.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powe
lapd.conf to cn=config be fixed so that it works.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
ntrol of the client to
> be able to set a loglevel that would expose this information.
STATS2 would be the appropriate loglevel setting.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
Full_Name: Quanah Gibson-Mount
Version: HEAD
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
Currently there is no way to see what values a client is providing for a MOD
operation outside of the "packets" debug level. It would be helpful for
--On Friday, June 21, 2019 10:58 PM + qua...@openldap.org wrote:
> This should be cleaned up.
Fixed in b02807ea2f5eaf85e57e67e5851931a116947b94
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
&l
Full_Name: Quanah Gibson-Mount
Version: RE24
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
There appear to have been dueling commits on April 10, 2005 and April 9, 2005,
so that we get:
3e800f20bd (Kurt Zeilenga 2005-04-10 19:32:14 + 28
us any passwords and the=20
like)?
Additionally, if you could get a full gdb backtrace of the hung slapd=20
process that would be useful as well. I.e.:
start up slapd
gdb /path/to/slapd
at the gdb prompt:
thr apply all bt full
Thanks!
--Quanah
--
Quanah Gibson-Mount
Product Architect
c/openldap/ldap.conf
^C
I.e., it started and then got as far as reading your ldap.conf file. What=20
is the contents of ldap.conf?
Have you run the test suite (make test)? Does it pass? fail?
Thanks,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Sunday, June 16, 2019 7:54 PM + qua...@symas.com wrote:
> --On Sunday, June 16, 2019 4:06 PM +0200 Armin T=C3=BCting=20
> wrote:
>
>> Hello Quanah,
>>
>> I'm following OPENLDAP_REL_ENG_2_4. The commit
>> 'cde56fad154fcd25e351c3cd84d8173d263b0a01' br
--On Sunday, June 16, 2019 4:06 PM +0200 Armin T=C3=BCting=20
wrote:
> Hello Quanah,
>
> I'm following OPENLDAP_REL_ENG_2_4. The commit
> 'cde56fad154fcd25e351c3cd84d8173d263b0a01' breaks starting slapd. It
> won't start at all...
>
> I'm using a fairly up-to-date CentOS
s for reporting bugs, not asking usage questions. Please
use the openldap-techni...@openldap.org mailing lists for questions such as
those above
(<https://www.openldap.org/lists/mm/listinfo/openldap-technical>).
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporatio
Full_Name: Quanah Gibson-Mount
Version: 2.4.47
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
The admin guide for delta-syncrepl needs updating.
For example, it is missing the reqDN attribute being indexed.
Additionally, it should be updated to reference
it's time for the existing FAQ to die.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
Hello,
There is no bug here. Your configuration is invalid. If you need help
with configuring OpenLDAP, then please use the
openldap-techni...@openldap.org mailing list.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP
te an answer. I think the better solution is just to remove the FAQ
software completely.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
), LMDB doesn't use them.
This ITS will be closed.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
noted in the documentation, the general
expectation is one sets a very large mapsize from the start. Hope that
helps!
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
.org/its/index.cgi/?findid=8969>
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
d for any
> purpose with or without attribution and/or other notice.
>
> https://eriix.org/download_file/eric-monson-16-05-03.patch
This URL is not accessible (requires a login?). I suggest uploading it to
our FTP server as documented for contributed patches.
Thanks!
--Quanah
--
Quanah Gi
enldap-technical>)
This ITS will be closed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
tioning as expected.
I've never encountered a situation where the order in which moduleload
executes matters. Can you please provide an example configuration
exhibiting problematic behavior based on moduleload order?
Thanks,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
P
ubmission is missing a required IPR, as noted at
<https://www.openldap.org/devel/contributing.html#notice>
An IPR is necessary to consider this work.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Friday, May 17, 2019 5:30 PM + khng...@gmail.com wrote:
> Bump.
I've added this to the review list.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
e help close ITS#8986 as this version is a resend of the
> patch.
The correct path is to follow up to your original ITS, not submit a new
one. This ITS will be closed.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions po
--On Friday, May 17, 2019 4:09 PM + "AYANIDES, JEAN-PHILIPPE"
wrote:
>
>
> Hello Quanah,
>
> I am not very familiar with gdb. Can you help me doing that?
Start slapd on the server that's crashing
Get the process ID of slapd
gdb /path/to/slapd PID
For example, if
d
> updateref in order to sync failures in ppolicy coming from rada back to
> simby. When I test that feature, with trying a bind with a wrong
> password, openldap on the slave crashes. I failed in understanding why,
> even with gdb.
Ensure you have debugging symbols installed, and provide a
ng system. More work needed, either removing libtool from the build
process for OpenLDAP, or modifications to this work to allow it to work
properly with a non-custom version of libtool.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and suppor
--disable-slapd
> --disable-slurpd
>
> Undefined symbols for architecture x86_64:
> "_ERR_remove_thread_state", referenced from:
> _tlso_destroy in libldap.a(tls_o.o)
Hello,
What version of OpenSSL were you linking against?
Thanks!
-
Full_Name: Quanah Gibson-Mount
Version: OpenLDAP 2.4
OS: 2.4.47
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.128.44)
Per the slapadd man page:
-S SID Server ID to use in generated entryCSN. Also used for contextCSN
if -w is set as well. Defaults
value in the certificate, for example:
subjectAltName=IP:1.2.3.4
> Also want to know if there is any open CVE which says it is
> vulnerabilities to use LDAP server ip address instead of name in ldap
> configuration.
I'm not aware of any such CVE or why there would be one.
--Quanah
--
Quan
ior was changed where we must
> have to configure FQDN name mentioned in certificate in order to work LDAP
> authentication... else TLS start failing.
OpenLDAP has worked this way since I first started using it in 2002. This
behavior is nothing new. And this is the correct behavior.
This
I've closed ITS#8708 and noted that the
fix for ITS#8796 resolved it.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
1 - 100 of 1168 matches
Mail list logo