The SSF reported when using startTLS is incorrect. This is because GnuTLS reports the strength in bytes, while the OpenLDAP code expects the strength in bits. Code needs to be updated to adjust the SSF value when linked against GnuTLS to our expected result.
The attached patch fixes this issue. 1. Install openldap2.3 2. Enable TLS If you have any questions please let me know. Regards chuck ** Attachment added: "fix-gnutls-key-strength.patch" http://launchpadlibrarian.net/16564904/fix-gnutls-key-strength.patch -- slapd reports wrong ssf using gnutls https://bugs.launchpad.net/bugs/244925 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
