Re: small myldap.c patch

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Arthur de Jong <arthur [at] arthurdejong.org>
To: Robert Brooks <robert.brooks [at] reporo.com>, nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: small myldap.c patch
Date: Thu, 27 Aug 2015 21:41:36 +0200

On Wed, 2015-08-26 at 12:02 -0700, Robert Brooks wrote:
> I believe we are looking to set TLS_REQUIRE_CERT to hard here...

Hi,

Thanks for your patch but no, the setting of LDAP_OPT_X_TLS is
intentional. It is used to specify an ldaps:// connection (even if no
ldaps:// URL is specified and may be required for some LDAP libraries).

It is a bit weird that LDAP_OPT_X_TLS_HARD is used as a value for
LDAP_OPT_X_TLS but seems intentional:
http://www.openldap.org/lists/openldap-software/200202/msg00456.html

Kind regards,

-- 
-- arthur - arthur@arthurdejong.org - http://arthurdejong.org/ --

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

small myldap.c patch, Robert Brooks
- Re: small myldap.c patch, Arthur de Jong

Prev by Date: Re: [PATCH] allow tls_randfile to be a file or a character device
Next by Date: Re: small myldap.c patch
Previous by thread: small myldap.c patch
Next by thread: Re: small myldap.c patch