[Date Prev][Date Next] [Chronological] [Thread] [Top]

HEADS UP: TLS "hard"

To: openldap-devel@OpenLDAP.org
Subject: HEADS UP: TLS "hard"
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 21 May 2003 15:19:24 -0700

I've removed the TLS "hard" option as it doesn't behave as
a default but as an override.  That is, if a user explicitly
asks to connect to ldap://ldap.example.com/ with -ZZ but there
is "TLS hard" set, the library will attempt SSL negotiation
despite being explicitly directed to use a different mechanism.

It's likely possible to rewrite init such that "TLS hard"
only affects the URI generated by HOST/PORT ldap.conf options...

Kurt

Follow-Ups:
- Re: HEADS UP: TLS "hard"
  - From: Stephen Frost <sfrost@snowman.net>

Prev by Date: Re: FW: ldapsearch problems (ITS#2490)
Next by Date: RE: slap tools notes
Index(es):
- Chronological
- Thread