[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenSSL clients connect over TLS, GnuTLS clients cannot.

To: Ben Goldsbury <bgoldsbury@gleim.com>, openldap-technical@openldap.org
Subject: Re: OpenSSL clients connect over TLS, GnuTLS clients cannot.
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Tue, 20 May 2008 11:26:13 -0700
Content-disposition: inline
In-reply-to: <46704.172.17.128.106.1211306032.squirrel@mail.teamgleim.com>
References: <46704.172.17.128.106.1211306032.squirrel@mail.teamgleim.com>

--On Tuesday, May 20, 2008 1:53 PM -0400 Ben Goldsbury <bgoldsbury@gleim.com> wrote:

If OpenLDAP is built against GnuTLS, TLS connections fail with this
error (some debug included):
Does anyone have any ideas whats going on, or any idea how to
troubleshoot this further?

There are a number of bugs in GnuTLS that render it fairly difficult to use. See Debian bug#477396 for example.

I also suggest reading the note on -devel from Howard Chu GnuTLS being considered unsafe to use from a security standpoint.

<http://www.openldap.org/lists/openldap-devel/200802/msg00072.html>

Is this something that should go to the openldap-bugs mailing list?

OpenLDAP-bugs is really not a general purpose mailing list to just send reports to. You should file an ITS about problems first, and then follow-ups to the ITS (which will get recorded on the openldap-bugs list). This way the mail stays in the ITS system so it can be tracked, and you have a bug# in which everything is tracked.

--Quanah

--

Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration

References:
- OpenSSL clients connect over TLS, GnuTLS clients cannot.
  - From: "Ben Goldsbury" <bgoldsbury@gleim.com>

Prev by Date: OpenSSL clients connect over TLS, GnuTLS clients cannot.
Next by Date: Remote LDAP servers and parallel queries
Index(es):
- Chronological
- Thread