[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS Info?

To: openldap-software@openldap.org
Subject: Re: TLS Info?
From: Bjørn Ruberg <bjorn@ruberg.no>
Date: Wed, 09 Sep 2009 18:06:05 +0200
Cc: Eric Nichols <eric@dirwiz.com>
In-reply-to: <4AA6A72F.1030208@dirwiz.com>
References: <4AA6A72F.1030208@dirwiz.com>
User-agent: Thunderbird 2.0.0.23 (X11/20090817)

Eric Nichols wrote:

I have not been able to figure out how to dump more info on theencryption levels, certificate CN & expiration date etc. Should thisbe done through the openssl functions? If so, what do I hook them to?

Your rather general questions yields a rather general answer - I wouldguess that e.g. http://www.symas.com/blog/?page_id=74 andhttps://help.ubuntu.com/community/SecuringOpenLDAPConnections describeswhat you are looking for. Note that negotiating TLS with openssl is notyet enabled for LDAP, only for SMTP.

I haven't seen certificate information in any loglevel either, justthrough stracing the process.

If the purpose is to intercept the encryption mechanisms within theOpenLDAP code, I suggest you try the openldap-devel mailing list formore information.

Hope this helps.

--
Bjørn

References:
- TLS Info?
  - From: Eric Nichols <eric@dirwiz.com>

Prev by Date: Re: Strange issue with replication in mirror mode
Next by Date: Re: TLS Info?
Index(es):
- Chronological
- Thread