[Date Prev][Date Next] [Chronological] [Thread] [Top]

Antw: Re: RE24 testing call (2.4.45) LMDB RE0.9 testing call (0.9.20)

To: <openldap-technical@openldap.org>
Subject: Antw: Re: RE24 testing call (2.4.45) LMDB RE0.9 testing call (0.9.20)
From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>
Date: Fri, 10 Feb 2017 09:04:58 +0100
Content-disposition: inline
In-reply-to: <0EB836D4A3B56CC8A52531D7@[192.168.1.30]>
References: <ED38F9D4DE1C79C42B095763@[192.168.1.30]> <1dbdbf1d-8384-3ba6-ac42-99b425003f12@andreasschulze.de> <WM!77b8f73e7cb893c957580018ba19a9e397e0883c0974298e0501f9772d6b7739905db338c5886e2fec82acbb53e2096e!@mailstronghold-1.zmailcloud.com> <0EB836D4A3B56CC8A52531D7@[192.168.1.30]>

>>> Quanah Gibson-Mount <quanah@symas.com> schrieb am 09.02.2017 um 20:54 in
Nachricht <0EB836D4A3B56CC8A52531D7@[192.168.1.30]>:

[...]
> Note "That *slapd* will recognize".  The server cannot and will not provide 
> the cert chains to clients as that is a massive security risk.  Clients can 

Can you explain what the massive security risk is?

> and must be configured with the list of CAs *they* will trust when the 
> server provides the cert.

[...]

Regards,
Ulrich

References:
- Re: RE24 testing call (2.4.45) LMDB RE0.9 testing call (0.9.20)
  - From: "A. Schulze" <sca@andreasschulze.de>
- Re: RE24 testing call (2.4.45) LMDB RE0.9 testing call (0.9.20)
  - From: Quanah Gibson-Mount <quanah@symas.com>

Prev by Date: Re: RE24 testing call (2.4.45) LMDB RE0.9 testing call (0.9.20)
Next by Date: OpenLDAP backup best practices
Index(es):
- Chronological
- Thread