[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS + SSL and openldap

To: openldap-technical@openldap.org
Subject: Re: TLS + SSL and openldap
From: "Dieter Kluenter" <dieter@dkluenter.de>
Date: Thu, 10 Dec 2009 14:30:05 +0100
In-reply-to: <18CB12AC95130F7AFBA77D85@[192.168.1.199]> (Quanah Gibson-Mount's message of "Wed, 09 Dec 2009 23:21:51 -0800")
References: <c6bf33680912082236g4561f90cu5f92066af8afd68a@mail.gmail.com> <87iqcfgbzf.fsf@rubin.avci.de> <18CB12AC95130F7AFBA77D85@[192.168.1.199]>
User-agent: Gnus/5.1008 (Gnus v5.10.8) XEmacs/21.5-b28 (linux)

Quanah Gibson-Mount <quanah@zimbra.com> writes:

> --On Wednesday, December 09, 2009 8:53 PM +0100 Dieter Kluenter
> <dieter@dkluenter.de> wrote:
>
>> Bruno Steven <aspenbr@gmail.com> writes:
>>
>>> Hi, 
>>>
>>> I am trying configure openldap work with tls , but I have two question
>>> about this, first when I use tls openldap use port 389 and ssl port 639
>>> , is this correct ?  Second How I can test connection between client
>>> and server, cryptography is working ? 
>>
>> There is no ssl port! SSL (Secure Socket Layer) is a proprietary,
>> licence based protocol, owned by Netscape? I don't know whether the
>> IPR of this protocol have been part of the Netscape/AOL deal. OpenLDAP,
>> and most other network based applications, have implemented Transport
>> Layer Security (TLS), RFC 2246. As a LPI certified professional you
>> should be aware of this.
>> OpenLDAP uses port 639, which has not been assigned by IANA to LDAP(S)
>
> 636?

 Ups, my usual typo.

-Dieter


-- 
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:8EF7B6C6
53°37'09,95"N
10°08'02,42"E

References:
- TLS + SSL and openldap
  - From: Bruno Steven <aspenbr@gmail.com>
- Re: TLS + SSL and openldap
  - From: "Dieter Kluenter" <dieter@dkluenter.de>
- Re: TLS + SSL and openldap
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: syncrepl broke, connection loss
Next by Date: Re: syncrepl broke, connection loss
Index(es):
- Chronological
- Thread