[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: GnuTLS / OpenSSL certificates compatibilty

To: rey sebastien <reyman64@gmail.com>, dsavard@cids.ca
Subject: Re: GnuTLS / OpenSSL certificates compatibilty
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Fri, 10 Feb 2012 11:14:17 -0800
Cc: openldap-technical <openldap-technical@openldap.org>
Content-disposition: inline
In-reply-to: <4F34E0CC.30405@gmail.com>
References: <4F344707.50402@gmail.com> <1328828005.27575.11.camel@feynman.cids.ca> <4F34E0CC.30405@gmail.com>

--On Friday, February 10, 2012 10:18 AM +0100 rey sebastien<reyman64@gmail.com> wrote:


Ok, thanks for answer,
It's really silly to have an official version with GnuTLS if isn't
functionnal :(

GnuTLS is fairly buggy, and also has serious known security issues. GnuTLSsupport was added at Debian's request, because of their issues with theOpenSSL license. That doesn't fix the fact that GnuTLS in and of itselfhas issues.

If i change my certificate for gnuTLS generated certificate (i use self
signed certificate..), no need to create a custom OpenLdap with OpenSSL
library ?

It might. I would still suggest you rebuild OpenLDAP so that it is linkedto OpenSSL instead of GnuTLS.


--Quanah

--

Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

References:
- GnuTLS / OpenSSL certificates compatibilty
  - From: rey sebastien <reyman64@gmail.com>
- Re: GnuTLS / OpenSSL certificates compatibilty
  - From: Daniel Savard <dsavard@cids.ca>
- Re: GnuTLS / OpenSSL certificates compatibilty
  - From: rey sebastien <reyman64@gmail.com>

Prev by Date: Re: Is putting slapd into read-only mode sufficient for backups?
Next by Date: Re: Help with Solaris LDAP client (how to make client read shadow information)
Index(es):
- Chronological
- Thread