[linux] ldap and gnutls

Maria McKinley parody at u.washington.edu
Wed Apr 29 13:24:00 PDT 2009

Previous message: [linux] ldap and gnutls
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Apr 29, 2009 at 11:27 AM, S. Morris Rose <rose at cs.washington.edu>wrote:

> You have trouble with openldap when you specify the path to your

> certificate. It could be informative to know whether it's being read,

> something that you could check by looking at the access time (assuming the

> mount is such at access time is updated). If not, maybe the specification

> thereof is wrong. strace could also be a useful tool. All may have occurred

> to you-- I don't presume to assume that it didn't-- but just in case.

>

I don't know of a way to check access times, that would be very useful. I
didn't find anything useful in the strace, but have attached the output in
case someone else sees something I don't.

from /var/log/syslog:

Apr 29 13:22:16 test slapd[11459]: @(#) $OpenLDAP: slapd 2.4.11 (Oct 11 2008
10:18:55) $#012#011vorlon at borges

:/home/devel/openldap/build-area/openldap-2.4.11/debian/build/servers/slapd

Apr 29 13:22:16 test slapd[11459]: main: TLS init def ctx failed: -1
Apr 29 13:22:16 test slapd[11459]: slapd stopped.
Apr 29 13:22:16 test slapd[11459]: connections_destroy: nothing to destroy.

thanks,
maria

>

> Maria McKinley wrote:

>

>> I have been trying to get tls and ldap working on debian for a while, and

>> I just can't get it working. The problem seems to be related to debian's

>> choice to use gnutls instead of openssl. I'm guessing that ubuntu has the

>> same problem, since it is debian based. I'd rather not switch to redhat, as

>> I'm not a fan of their packaging system. Does anyone know of a linux

>> distribution with a reasonable packaging system that uses openssl for ldap?

>>

>> thanks,

>> maria

>>

>>

>>

>> --

>> Mark Twain <http://www.brainyquote.com/quotes/authors/m/mark_twain.html>

>> - "Get your facts first, then you can distort them as you please."

>>

>

> --

> S. Morris Rose

> CoG

>

>

>

--
Maria Mckinley
Scientific Programmer
Shadlen Lab
Physiology and Biophysics
Box 357290
University of Washington
(206) 616-3923
parody at u.washington.edu
--
Albert Einstein<http://www.brainyquote.com/quotes/authors/a/albert_einstein.html>
- "Only two things are infinite, the universe and human stupidity, and
I'm
not sure about the f...
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman2.u.washington.edu/pipermail/linux/attachments/20090429/00d62c00/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: test.slapd
Type: application/octet-stream
Size: 24215 bytes
Desc: not available
Url : http://mailman2.u.washington.edu/pipermail/linux/attachments/20090429/00d62c00/test-0001.obj

Previous message: [linux] ldap and gnutls
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux mailing list