Re: Locking down ciphers in OpenLDAP with GnuTLS

[Philip Colmer <philip.colmer@linaro.org>]

Many thanks, Ryan.

I'll schedule a maintenance window so that I can do some testing without affecting users.

Regards

Philip

On Thu, 7 Feb 2019 at 17:09, Ryan Tandy <ryan@nardis.ca> wrote:

On Thu, Feb 07, 2019 at 06:05:02PM +0100, Michael Ströder wrote:
>You should rather set
>
>olcTLSProtocolMin: 3.3

Unfortunately this option is currently implemented for OpenSSL only,
while Philip mentioned he is using GnuTLS.