Re: PFS: ITS#7506 in master but not in release

2014-11-10 Thread Quanah Gibson-Mount
--On November 10, 2014 at 6:38:18 PM +0100 Christopher Odenbach wrote: Am 10.11.2014 um 17:44 schrieb Dieter Klünter: You should pobably read GnuTLS Docs on this matter, and this blog for background information. https://sys4.de/de/blog/2013/09/09/perfect-forward-secrecy-eine-zusammen fa

Re: PFS: ITS#7506 in master but not in release

2014-11-10 Thread Christopher Odenbach
Am 10.11.2014 um 17:44 schrieb Dieter Klünter: > > You should pobably read GnuTLS Docs on this matter, and this blog for > background information. > > https://sys4.de/de/blog/2013/09/09/perfect-forward-secrecy-eine-zusammenfassung I have already read this blog, I know about the dh-params file.

Re: PFS: ITS#7506 in master but not in release

2014-11-10 Thread Dieter Klünter
Am Mon, 10 Nov 2014 14:11:59 +0100 schrieb Christopher Odenbach : > > Hi, > > > while I was trying to find out why slapd does not use Perfect > > Forward Secrecy I found bug #7506 from september 2013. The patch > > has already been applied to the master branch but still cannot be > > found in an

Re: Ppolicy not working on openldap on ubuntu 12.04 server

2014-11-10 Thread Quanah Gibson-Mount
--On November 10, 2014 at 9:32:13 AM -0500 Guruprasad Kulkarni wrote: > None have worked. If anyone knows of a way to make it work, please let me know. Don't use the ancient and broken version of OpenLDAP shipped with Ubuntu 12. You likely should grab the builds from the LTB project, w

Re: export directory in LDIF format

2014-11-10 Thread Quanah Gibson-Mount
--On November 10, 2014 at 7:00:58 AM -0500 Jerry wrote: I have a strange problem exporting my directory into LDIF format. I am using the "mdb" format with openldap. /usr/local/sbin/slapcat -l MyDomain.net.ldif -b "dc=MyDomain,dc=net" slapcat does not require slapd to be running to export

Ppolicy not working on openldap on ubuntu 12.04 server

2014-11-10 Thread Guruprasad Kulkarni
Hi, I am using Ubuntu 12.04 LTS server and have installed openldap on it. The commands used were: apt-get install slapd ldap-utils dpkg-reconfigure slapd I selected the default options for the questions asked. I am having a hard time trying to make ppolicy work on it. I loaded the ppolicy.sche

Re: PFS: ITS#7506 in master but not in release

2014-11-10 Thread Christopher Odenbach
Hi, > while I was trying to find out why slapd does not use Perfect Forward > Secrecy I found bug #7506 from september 2013. The patch has already > been applied to the master branch but still cannot be found in any > released version since. Why is this so? I would like to see good > encryption i

export directory in LDIF format

2014-11-10 Thread Jerry
I have a strange problem exporting my directory into LDIF format. I am using the "mdb" format with openldap. /usr/local/sbin/slapcat -l MyDomain.net.ldif -b "dc=MyDomain,dc=net" If I run this command after starting "slapd", it works fine. However, I have this configured to run from a CRON job at

Re: Backing up openldap

2014-11-10 Thread Marc Patermann
Jerry, Jerry schrieb (08.11.2014 13:07 Uhr): Before changing over to "mdb" from "bdb", I ran a script that used slapcat to generate an LDIF file every night. Since updating to "mdb", that script fails if "slapd" is running. That is expected behavior from what I have been reading.