On Fri, Mar 26, 2010 at 3:18 PM, Howard Chu wrote:
> Chris Jacobs wrote:
>>
>> There's one sure fire way to find out...
>>
>> Start it up with a syncrepl, then move the private key, and see if it
>> syncs fine both ways.
>>
>> Wait a day or so, and make a change and see if that synced.
>>
>> If I
| fax: 206.441.9661
email: chris.jac...@apollogrp.edu
- Original Message -
From:
openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org
To: openldap-technical@openldap.org
Sent: Thu Mar 25 18:44:47 2010
Subject: Re: tls private key
HI
On Fri, Mar 26, 2010 at 12:09 PM,
mail: chris.jac...@apollogrp.edu
- Original Message -
From: openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org
To: openldap-technical@openldap.org
Sent: Thu Mar 25 18:44:47 2010
Subject: Re: tls private key
HI
On Fri, Mar 26, 2010 at 12:09 PM, Tyler Gates wrote:
> Alex,
HI
On Fri, Mar 26, 2010 at 12:09 PM, Tyler Gates wrote:
> Alex,
> Â encrypting the private key really isn't necessary and I highly doubt it
> would work for your application nor be worth the hassel. Securing via file
> permisssions as mentioned previously is really the best way to tackle this.
> T
lto:openldap-technical-bounces
+chris.jacobs=apollogrp@openldap.org] On Behalf Of Alexander
Samad
Sent: Monday, March 22, 2010 11:21 PM
To: openldap-technical@openldap.org
Subject: Fwd: tls private key
Hi
THought I would re ask, do certificates only get read at start up,
I store my cert
m: openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org
> [mailto:openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org]
> On Behalf Of Alexander Samad
> Sent: Monday, March 22, 2010 11:21 PM
> To: openldap-technical@openldap.org
> Subject: Fwd: tls p
es+chris.jacobs=apollogrp@openldap.org] On
Behalf Of Alexander Samad
Sent: Monday, March 22, 2010 11:21 PM
To: openldap-technical@openldap.org
Subject: Fwd: tls private key
Hi
THought I would re ask, do certificates only get read at start up, I store my
cert's with password, can i unp
arded message --
From: Alex Samad
Date: Sat, Jan 16, 2010 at 6:03 PM
Subject: tls private key
To: openldap-technical@openldap.org
Hi
I am setting up my sync repl to use certificates, my problem is I don't
want to leave my private key for the server un encrypted.
the file poi
Hi
I am setting up my sync repl to use certificates, my problem is I don't
want to leave my private key for the server un encrypted.
the file pointed to by TLSCertificateKeyFile is is just read at slapd
load up time, ie can i unencrypt the file start slapd and then remove
the un encrypted file