Mike Thomas wrote: > > I am trying to secure communication to my openLDAP server by using an > SSL tunnel. I have tried several OpenSSL derived offerings(stunnel, > sslproxy...). All seem to fail with a bad cert error in the > SSL3_READ_BYTES call. I am not performing any certificate verification > on the server side. There are no problems when I use the same tunnels > for http from a netscape client. I suspect that there is a bug in > netscape(Tried both 4.61 and 4.72 on Win/Linux), but could find no info > in the may FAQ's I checked. Just wondering if anyone here has > experienced this and if they know of a fix. Go to www.OpenLDAP.org, look for the development FAQ (that you should not be reading unless you run the development versions, but it this case it is OK) and look for the entry on how to make TLS work. Read the part about how to get the certificates right. It may help you even with stunnel. Julio ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
