Re: [squid-users] squid_ldap_group + TLS

From: Henrik Nordstrom <hno@dont-contact.us>
Date: 16 Jan 2003 23:54:23 +0100

tor 2003-01-16 klockan 20.32 skrev Dieter Kluenter:

> > Try it, and then report back here if it works or not.
>
> Got squid_ldap_group working with TLS and openldap-2.1.3

Great.

> but squid_ldap_auth complaints "unknown option "Z".

Expected. The option only exists in "the next" version, found in
Squid-HEAD. The same helper however works just fine with Squid-2.5 also.

> ldaps:// is a holdover from LDAPv2 and not compatible to LDAPv3
> STARTTLS, see documentation of openldap.2.1.x

Well, there is people needing to use ldaps:// out there to talk to their
LDAPv2 server, and it seems it can be provided almost for free when
using the OpenLDAP client API so..

ldaps:// runs on another port so I see no valid reasons to
incompatibilities. Do you have any specific pointers?

-- 
Henrik Nordstrom <hno@squid-cache.org>
MARA Systems AB, Sweden
Received on Thu Jan 16 2003 - 15:54:34 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:42 MST