Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

guys, no feedback on the diff I sent :/ On Sun, Jan 20, 2013 at 12:31:41PM +0100, Gilles Chehade wrote: Hi Vadim, I only use ldapd in a local context but I'll have a look tomorrow and come up with a diff for that. Thanks, Gilles On Sat, Jan 19, 2013 at 01:56:12PM +0100, Vadim

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

Hi, I wasn't aware of any diffs. With time, the OpenBSD (ldapd server) was upgraded to 5.2 and the Linux client is now Debian 6.0.6. So far, the issue is still there. Best regards. Le 28 janv. 2013 à 11:47, Gilles Chehade gil...@poolp.org a écrit : guys, no feedback on the diff I sent :/

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

On Mon, Jan 28, 2013 at 12:28:58PM +0100, Joel Carnat wrote: Hi, I wasn't aware of any diffs. With time, the OpenBSD (ldapd server) was upgraded to 5.2 and the Linux client is now Debian 6.0.6. So far, the issue is still there. Best regards. Diff below should fix your issue. It was

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

Built on source tree from 5.2: it works! Gotta switch back to SSL :)) Thank you. Jo Le 28 janv. 2013 à 12:31, Gilles Chehade gil...@poolp.org a écrit : On Mon, Jan 28, 2013 at 12:28:58PM +0100, Joel Carnat wrote: Hi, I wasn't aware of any diffs. With time, the OpenBSD (ldapd

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

Great thanks On Mon, Jan 28, 2013 at 12:42:35PM +0100, Joel Carnat wrote: Built on source tree from 5.2: it works! Gotta switch back to SSL :)) Thank you. Jo Le 28 janv. 2013 ? 12:31, Gilles Chehade gil...@poolp.org a ?crit : On Mon, Jan 28, 2013 at 12:28:58PM +0100, Joel

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

Hi Vadim, I only use ldapd in a local context but I'll have a look tomorrow and come up with a diff for that. Thanks, Gilles On Sat, Jan 19, 2013 at 01:56:12PM +0100, Vadim Agarkov wrote: Hello! Debian's (as well as Ubuntu's) openldap client is linked against GnuTLS library in contrast to

Re: ldapd and The Diffie Hellman prime sent by the server is not acceptable

Hello! Debian's (as well as Ubuntu's) openldap client is linked against GnuTLS library in contrast to the OpenBSD one which is linked against openssl library. Recent GnuTLS versions have more strict settings - they won't allow dh params with 512 bits or less and OpenBSD's ldapd daemon uses

ldapd and The Diffie Hellman prime sent by the server is not acceptable

Hello, On a Ubuntu Linux 8.04 machine, I can't query my OpenBSD 4.9 ldapd(8). It works from the local OpenBSD and from a remote NetBSD server. All machines have the CA file installed in the OpenSSL directory and the ldap.conf file configured to use that particular CA file. Here's what I get on