Re: mod_ldap SNI ? Google LDAP server ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wed, Apr 5, 2023 at 9:28 AM Eric Covener <covener@xxxxxxxxx> wrote:
>
> On Wed, Apr 5, 2023 at 9:19 AM David Tkacik
> <dtkacik@xxxxxxxxxxxxxxxx.invalid> wrote:
> >
> > Hello :)
> >
> > I’m running Apache/2.4.55 with mod_ldap.x86_64 2.4.55-1.amzn2
> >
> > I’m trying to make to work the ldap over SSL to LDAP provided by Google. But unfortunately no success.
> > Via plain LDAP using stunnel all works as expected. But using SSL directly in httpd doesn’t work.
> >
> > I think it may have something do with mod_ldap doesn’t support SNI yet as I’m not sure which version of OpenLDAP is compiled to mod_ldap ?
> > As wrote here: https://lists.apache.org/thread/tqr1xncnpsqjdy1ysbrzcvzw1om41rl7
>
> At build time, an LDAP client library is detected and usually
> dynamically linked.
>
> If there is some LDAP_SET_OPTION that passes a server name separately,
> or opts into the extension for this SDK, I think mod_ldap would need
> to be patched to be aware of it

It is also possible the SDK reads some external config where it could
be turned on.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx





[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux