I was finally able to capture an strace of slapd with the error
happening (apache auth_ldap failing the starttls):
Captured with the following command:
strace /usr/sbin/slapd -g openldap -u openldap -f /etc/ldap/slapd.conf
-d 255
See attached text file (large part of certificate dump removed).
I spoke too soon. After using the combination for a while, the problems
returned.
I am still on hardy-proposed for the webservices and hardy for ldap-
server. Can anyone confirm this? I know that Adam was able to reproduce
the sporadic behavior. I am guessing at gnutls, but have not run strace
aga
This bug seems solved when using the latest versions of apache2,
php5-ldap, and slapd (etc).
--
php5-ldap TLS (start_tls) quirks
https://bugs.launchpad.net/bugs/240387
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
--
Ub
I missed to state that these errors are indeed sporadic.
Here are my indexes:
index objectClass,entryCSN,entryUUID eq
index cn,sn,uid,displayname pres,sub,eq
index maileq
index uidNumber eq
index gidNumber eq
index memberUid
I have turned off authnz-ldap apache authentication for the specific
site and that seems to do the trick ... of course now all my pages are
out in the open but at least the scripts run with startTLS ... so it
seems to be a combination of starttls with apache authnz-ldap config and
the php script it
Just tried hardy-proposed version of slapd and it does _not_ help with
the startTLS problem.
A failed connection looks like this:
Jun 24 11:23:57 srv-bs1 slapd[9577]: conn=0 fd=15 ACCEPT from
IP=127.0.0.1:58521 (IP=0.0.0.0:389)
Jun 24 11:23:57 srv-bs1 slapd[9577]: conn=0 op=0 EXT oid=1.3.6.1.4.1
This is _not_ solely related to php5-ldap start_tls. After having a
script on a htaccess protected webserver reload every five minutes,
authnz-ldap also brings the error...
Will check with hardy-proposed on the weekend.
--
php5-ldap TLS (start_tls) quirks
https://bugs.launchpad.net/bugs/240387
Y
Public bug reported:
Binary package hint: php5-ldap
After switching from gentoo i386 to ubuntu hardy 8.04 x64, using the
same configuration (of course adapted to the new host system), any PHP
script that wants to issue a startTLS behaves unpredicatebly. Best
example is phpLDAPadmin which at times
