[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: TLS fails
- To: openldap-technical@openldap.org
- Subject: Re: TLS fails
- From: Frederik Bosch <frederik.bosch@gmail.com>
- Date: Tue, 31 Aug 2010 12:15:43 +0200
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=6AhhSb4uRm6X0cXBflQWPGQETpp74wW2s75k5ZQ5pqk=; b=mpFL8i7H3iX2vmZWhG/VDGWrmxeXpkMKY64Ko6ICuW1B0xRkyA6XIsHgM6hI3S1VGf usvNZ7BbWPEjm/P4KbYtfw4TkM1JmpigClHAZy/3oTmD+Oz7Jmewc2t+qwpcesSggFBr EmxiiWLPA8vMX02ev/3vGym7S9vtEJS7Ww16M=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=wYToxis+74OOk+fb+OQlQi+XkOTEyOMHq8bQhLA9Ex9Bk73GysflVmZM/qh74o1NAz WzzV9WNHLZCxIuJ0xSBprfjkRLH8MmnvrGAP4537VLdiUNo5gK+k1whNkAJZ5ES0haI4 TmLXrsbG3OjD/BeTkN9Hk+I/0eP45JnMEjXlo=
- In-reply-to: <4C7CC5CC.3030200@gmail.com>
- References: <4C7CC5CC.3030200@gmail.com>
- User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.11) Gecko/20100713 Thunderbird/3.0.6
In that case. I'd go for recompiling with openssl. I already tried, but
that gave me following error.
Could not locate TLS/SSL package.
Of course, I also googled that. I think I need to point where to find
the OpenSSL library.
dpkg -L openssl says
/usr/lib/ssl
/usr/lib/ssl/misc
/usr/lib/ssl/misc/c_info
/usr/lib/ssl/misc/CA.sh
/usr/lib/ssl/misc/c_hash
/usr/lib/ssl/misc/c_name
/usr/lib/ssl/misc/c_issuer
/usr/lib/ssl/misc/CA.pl
So I tried to do
env CPPFLAGS="-I/usr/lib/ssl" LDFLAGS="-L/usr/lib/ssl"
before configure but no success. By the way, this is first time I try to
compile something and I do it with debuild -us -uc.
On 08/31/2010 11:05 AM, Frederik Bosch wrote:
After getting my ACL right (thanks Dieter!), I have problems installing
an official certificate. I bought a certificate at RapidSSL. Starting
slapd gives me the following error.
TLS init def ctx failed: -69
This error is thrown in openldap 2.4.17. Since I am on debian, slapd is
compiled against GnuTLS. When I was using 2.4.11 I had another error:
TLS init def ctx failed: -207
When I had a self-signed certificate I had no trouble. What could be wrong?
- References:
- TLS fails
- From: Frederik Bosch <frederik.bosch@gmail.com>