Apache 2.2 mod_ldap refusing to work over SSL/TLS
Maxim Khitrov
mkhitrov at gmail.com
Wed Nov 25 16:00:15 UTC 2009
On Wed, Nov 25, 2009 at 10:46 AM, Brian A. Seklecki (CFI NOC)
<seklecki at noc.cfi.pgh.pa.us> wrote:
>
>> As far as I can tell, it doesn't even get to the certificate
>> verification phase even though the STARTTLS command is successful.
>
> Is there any level of debugging that can be increased on the Apache side ?
> Possibly a build/compile-time option for the module?
>
> Debugging apache code can always be tricky because of the threaded/child
> process nature.
>
> We use mod_authz_ldap and it works "okay", but OpenLDAP an can be a real
> beyotch when it comes to SSL/TLS.
>
> E.g., we feel your pain. The only way out, is through.
>
> ~BAS
I figured it out eventually (see [1]). It's been working without any
problems for a few days now.
- Max
[1] http://lists.freebsd.org/pipermail/freebsd-questions/2009-November/208195.html
More information about the freebsd-questions
mailing list