On Tue, 04 Jan 2005 09:45:13 -0800, Justin Erenkrantz ... does this look correct? svn copy https://svn.apache.org/repos/asf/httpd/httpd/trunk \ ...
52126
William A. Rowe, Jr.
wrowe@...
Jan 4, 2005 7:41 pm
It seems that our support for ssl/tls with mod_ldap is considerably confusing and frustrating for users. The recent interest in fixing support for the...
52127
Jim Jagielski
jim@...
Jan 4, 2005 7:55 pm
... +1 for adding it in... Even better if it's made into a branch for development before folding back into HEAD (yeah svn!) but no matter what, let's fold it...
52128
William A. Rowe, Jr.
wrowe@...
Jan 4, 2005 9:50 pm
... For httpd-2.1 - the patch is entangled across apr and httpd. The httpd side shouldn't require a cheap branch, since it should be forward progress which...
52129
Roy T. Fielding
fielding@...
Jan 4, 2005 11:12 pm
... No, it should be specified by a configuration option, as suggested in the PR. ....Roy...
52130
Andre Pang
ozone@...
Jan 5, 2005 12:07 am
Hi all, I've been writing some Apache 2.0 (HTTP Server) modules, and I've found a problem with Windows calling conventions. Apache assumes that the module is...
52131
William A. Rowe, Jr.
wrowe@...
Jan 5, 2005 2:20 am
... Let me make sure I understand; you build your module forcing the /Gz option? I'll consider the minimal semantics to force this to behave (we have a set of...
... That's exactly right. ... That sounds perfect to me. I mentioned this in my original message, ... ... so it looks like we're in sync there. Adding...
52133
mturk@...
Jan 5, 2005 5:00 am
For further details see the attachment. +++ Attachment: No Virus found +++ Kaspersky AntiVirus - www.kaspersky.com...
52134
Graham Leggett
minfrin@...
Jan 5, 2005 6:53 am
... Doing some Googling, it seems that an out of url directive seems to be the way everyone else is handling it. Let me look at this patch - it will probably...
52135
Justin Erenkrantz
justin@...
Jan 5, 2005 8:25 am
... Yup. -- justin...
52136
Graham Leggett
minfrin@...
Jan 5, 2005 11:11 am
... I have just taught's apr-utils' apr_ldap_init() function to handle STARTTLS in addition to SSL (or no encryption). apr_ldap_init() supports an integer...
52137
Brian Akins
bakins@...
Jan 5, 2005 1:11 pm
keeps getting bounced. Sorry for breaking thread. ... Subject: Re: How to change ap_document_root variable from a apache2 ... There may be some benefit to...
52138
jean-frederic clere
jfrederic.clere@...
Jan 5, 2005 4:20 pm
... Just my bad. util_charset.h has already the needed #if APR_CHARSET_EBCDIC. Cheers Jean-Frederic...
52139
William A. Rowe, Jr.
wrowe@...
Jan 5, 2005 5:38 pm
... Based on your new schema, don't you mean + apr_ldap_init(r->pool, &(ldc->ldap), + ldc->host,...
52140
William A. Rowe, Jr.
wrowe@...
Jan 5, 2005 5:51 pm
This ancient bug; http://archive.apache.org/gnats/73 was addressed very early in httpd-2.0 However - it makes very detailed error logs almost impossible to...
52141
Graham Leggett
minfrin@...
Jan 5, 2005 5:57 pm
... This has ended up becoming ldc->secure == APR_LDAP_OPT_TLS_HARD (which equates to 1) after the STARTTLS patch was applied. ... It is - is there a better...
52142
Jeff Trawick
trawick@...
Jan 5, 2005 6:24 pm
On Wed, 05 Jan 2005 11:50:27 -0600, William A. Rowe, Jr. ... no reason to append referrer for debug lines... ... frequent messages on real site (not a...
52143
William A. Rowe, Jr.
wrowe@...
Jan 5, 2005 6:38 pm
It seems pcre new build is quite crufty. Comments? Looks like there should be a word_byteflip and dword_byteflip flavor. Also seems like a very...
52144
Dick Snippe
Dick.Snippe@...
Jan 5, 2005 10:13 pm
... I tried that once, but I never got it working. Simply unset all "Set-Cookie" headers doesn't work, because that would also remove them at places where ...
52145
Will Lowe
harpo@...
Jan 6, 2005 1:16 am
I'm running a site that uses mod_unique_id to generate session IDs under Apache 1.3. We'd like to later be able to use the session IDs as database keys, but...
52146
Andreas Steinmetz
ast@...
Jan 6, 2005 3:56 pm
This is missing something related to %d... #ifdef DEBUGGING ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, r->server, "proxy: CONNECT: read %d from client", ); ...
52147
Brad Nicholes
BNICHOLES@...
Jan 6, 2005 4:13 pm
I guess I am still a little unclear on what the advantage is to using ldap:// + start_tls vs. ldaps://. The end result is the same except that you have a...
52148
William A. Rowe, Jr.
wrowe@...
Jan 6, 2005 5:19 pm
... SunOne Directory servers support only ldaps:// SSLv3. Most OpenLDAP servers are configured only STARTTLS ldap:// TLSv1. Pretty significant difference, and...
52149
Bennett, Tony - CNF
Bennett.Tony@...
Jan 6, 2005 5:33 pm
Regarding LDAP, Apache is a client which must adhere to how the LDAP server is configured, be that a secure port (ldaps://) or via an unsecure connection...
52150
Graham Leggett
minfrin@...
Jan 6, 2005 8:45 pm
... It seems it is possible for OpenLDAP to support both ldaps:// and ldap:// + STARTTLS, however this is done using ldap_set_option(): ...
52151
Graham Leggett
minfrin@...
Jan 6, 2005 9:19 pm
... Apparently ldap:// + STARTTLS is a standard, and ldaps:// is not a standard (although it's universally supported). The end result of both methods is the...
52152
William A. Rowe, Jr.
wrowe@...
Jan 6, 2005 9:56 pm
... Yes. ... Remember MANY httpd admins don't have any say-so about the backend ldap servers that are administered by centralized IT departments. And I agree,...
52153
Brad Nicholes
BNICHOLES@...
Jan 6, 2005 11:19 pm
... then ... Call me paranoid, but I completely agree. Especially since the primary purpose of auth_ldap is authentication, ie. userid's and passwords and ...
52154
William A. Rowe, Jr.
wrowe@...
Jan 6, 2005 11:47 pm
... Can anyone provide an example of why this would be useful? Otherwise it makes sense just to have one API, and let the user choose the flavor based on...
