Instead of beating your head against DLZ can't you simply put the DLZ
query into stunnel and connect to the openldap server that way?
Ted
On 2/11/2021 10:39 PM, Dario García Díaz-Miguel wrote:
Hi there,
I really don't know If this is the correct place to ask about Bind DLZ, but I'm afraid
th
Hi Ted,
Thank you for your answer.
Both servers (OpenLDAP and BIND DLZ) are on the same machine.
LDAPI:/// socket has been configured to not require SSL with olcLocalSSF
If BIND DLZ is not supporting LDAPS, does it support any way to bind against
LDAP using LDAPI?
I've tried to use the ldapi:/
If the programs are both on the same machine and you are using ldapi
with oldlocalSSF then you are NOT using SSL.
For starters on this machine if you simply run a LDAP query with
the command line tools against the OpenLDAP server does it work?
Like ldapsearch -LLL -H ldapi://blardy blardy blar
W
Hi Ted,
The values related with the issue configured on the slapd configuration are on
my original message:
>
> - olcSecurity: ssf=256
> - olcLocalSSF: 256
> - olcRequires: authc
> - olcDisallow: bind_anon
> - olcTLSVerifyClient: try
>
Exactly, using LDAPI with my olcLocalSSF configuration is n
That should be impossible. Bind DLZ is compiled to use the same
openldap libraries that your openldap server is using. If you configure
the query URL as ldapi then the same thing is being sent to
the libraries that ldapsearch is sending. That is why you do not have
to do anything special othe
Hello,
On of my machines in Running Centos 7 / CPanel.
It says my primary and secondary DNS are not active
Here is my configuration file
//Use with the following in named.conf, adjusting the allow list as needed:
key "rndc-key" {
algorithm hmac-sha512;
secret
"aSDvgpfRXnUAG8rb
Am 12.02.21 um 15:21 schrieb The Doctor via bind-users:
Hello,
On of my machines in Running Centos 7 / CPanel.
It says my primary and secondary DNS are not active
intern or public nameservers?
query-source address 192.168.81.1 port 53;
don't do that!
listen-on {192.168
I don't think tcpdump was installed by default with various versions of Debian
that I set up in the last few years for networking. I didn't bother to install
it, as it's output is different enough (old fashioned?) from the sharks to be
annoying. It *was* installed with OpenSuSE 15.2 though. (Ope
Greetings,
I’ve been fighting a two-fold problem with named (bind 9.16.11) running on
macOS.
1: If an ethernet interface being listened to drops link, named immediately
stops listening to it:
12-Feb-2021 17:33:19.326 no longer listening on 192.168.88.220#53
and
2: when link returns I get 2 t
9 matches
Mail list logo
