FreeBSD 10.0-CURRENT/amd64 and SSL connections to PostgreSQL 9.1.3:
broken!
O. Hartmann
ohartman at mail.zedat.fu-berlin.de
Fri Mar 30 09:43:46 UTC 2012
A couple of days ago I updated FreeBSD 10.0-CURRENT and deleted old libs
and old files via "make delete-old-XXX" in /usr/src, as I saw that
Kerberos5/Heimdal got an update.
After that, several server/applications didn't work correctly anymore
due to missing, already deleted libraries.
So i recompiled nearly every port, especially Subversion, OpenLDAP
(amongst Cyrus SASL, pam_ldap and nss_ldap). PostgreSQL has also got an
update from 9.1.2 to 9.1.3 that time.
My hurting problem is, that ALL FreeBSD 10.0-CURRENT based servers using
OpenLDAP or SSL connections now fail. I can not exactly nail down the
problem, but these (already completely with portmaster -f recompiled
applications) ports fail connecting to PostgreSQL when using OpenLDAP/SSL:
pgadmin3 (users in pg_hba are, except superuser, on OpenLDAP)
refdb (refdb users are OpenLDAP backed)
Mediawiki (Mediawiki users are OpenLDAP backed)
These ports connect to PostgreSQL and use for user's authentication
OpenLDAP. Our boxes also use OpenLDAP for user authentication, this
works, so I assume PostgreSQL is the failing point.
In the log I get that a pg_hba entry with SSL off is missing. Somehow,
SSL doesn't work anymore or the certificate got invalidated (created
with a CA on FreeBSD 9, now used on FBSD 10).
Does anyone also experience this weird behaviour?
Regards,
Oliver
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20120330/c8b8fecc/signature.pgp
More information about the freebsd-ports
mailing list