ldaps cannot be used

El Thu, Dec 22, 2005 at 05:33:21PM +0100, Yann Forget va escriure:
> Package: smbldap-tools
> Version: 0.9.1-2
> Severity: normal
> Tags: patch
>
> Hi,
>
> I added/change the following to use LDAP + SSL:

What you have sent is not a patch, so I don't really know what I'm
supposed to do with it... what is not working? where is the code you have sent
supposed to go?

Greetings,

  Sergio.

> use Net::LDAPS;
>
> if (($config{ldapSSL} != 1) and ($config{ldapTLS} != 1)) {
> print "re\n";
> $ldap_master = Net::LDAP->new(
> "$config{masterLDAP}",
> port => "$config{masterPort}",
> )
> or die "LDAP error: Can't contact master ldap server ($@)";
> }
> if ($config{ldapSSL} eq "1") {
> $ldap_master = Net::LDAPS->new(
> "$config{masterLDAPS}",
> port => "$config{masterPort}",
> verify => "$config{verify}",
> cafile => "$config{cafile}"
> )
> or die "LDAP error: Can't contact master ldap server with SSL ($@)";
> }
>
> with in /etc/smbldap-tools/smbldap.conf
> masterLDAPS="ldaps://myldapserver/"

--
Sergio Talens-Oliag <email address hidden> <http://www.uv.es/~sto/>
Key fingerprint = 29DF 544F 1BD9 548C 8F15 86EF 6770 052B B8C1 FA69

Package: smbldap-tools
Followup-For: Bug #344422

The problem with smbldap-tools is that it cannot connect to a ldap server
that doesn't run in unencrypted mode at all. I wanted to run slapd with -h
ldaps:/// only. smbldap-tools are unable to connect to it.
Unfortunately I don't know perl at all. But afaict the code snippet from the
original bug report should go somewhere in smbldap_tools.pm. I'd be very
glad if someone that knows perl could have another look at it.
Thanks, Jonas

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)

Kernel: Linux 2.6.22-3-686 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash