small myldap.c patch

[Robert Brooks <robert.brooks [at] reporo.com>]

Hi,

I believe we are looking to set TLS_REQUIRE_CERT to hard here...

--- nss-pam-ldapd-0.9.6.orig/nslcd/myldap.c     2015-05-24 13:05:40.000000000 +0000
+++ nss-pam-ldapd-0.9.6/nslcd/myldap.c  2015-08-26 18:39:58.106283171 +0000
@@ -875,8 +875,8 @@
   {
     /* use tls */
     i = LDAP_OPT_X_TLS_HARD;
-    log_log(LOG_DEBUG, "ldap_set_option(LDAP_OPT_X_TLS,LDAP_OPT_X_TLS_HARD)");
-    LDAP_SET_OPTION(session->ld, LDAP_OPT_X_TLS, &i);
+    log_log(LOG_DEBUG, "ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT,LDAP_OPT_X_TLS_HARD)");
+    LDAP_SET_OPTION(session->ld, LDAP_OPT_X_TLS_REQUIRE_CERT, &i);
   }
 #endif /* LDAP_OPT_X_TLS */
 #ifdef LDAP_OPT_X_SASL_NOCANON

Regards,

Rob

--

Robert Brooks
Head of Systems
Reporo

Tel: +1 (415) 758-2220

http://www.reporo.com
World's Largest & Most Lucrative Mobile Ad Network

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/