httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Eric Covener" <cove...@gmail.com>
Subject Re: [users@httpd] Apache httpd 2.2.8 not reading LDAPTrustedGlobalCert files
Date Wed, 30 Apr 2008 21:43:30 GMT
On Wed, Apr 30, 2008 at 4:27 PM, Irwin Tillman <irwin@princeton.edu> wrote:

>  But the truss shows that at no time (at startup or later when talking to an LDAP server)
>  does the parent or any child httpd try to open() the file /var/local/etc/certs/foo.
>  So (not surprisingly), attempts by httpd to verify certificates issued by
>  the CA whose cert is in 'foo' fail.

Can you try truss -u ::ldap_set_option and see if we're passing the
cert info off to openldap?  openldap would be the one actually on the
hook for doing the checking.

Coercing some trace out of openldap might yeild a clue too

-- 
Eric Covener
covener@gmail.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message