[389-devel] Please review: [389 Project] #47987: PassSync: support TLS 1.1 and newer SSL versions
Noriko Hosoi
nhosoi at redhat.com
Fri Jan 16 00:57:18 UTC 2015
https://fedorahosted.org/389/ticket/47987
https://fedorahosted.org/389/attachment/ticket/47987/0001-Ticket-47987-Support-TLS1.1-and-newer-SSL-versions.patch
On 01/15/2015 04:57 PM, 389 Project wrote:
> Description:
> Adjusting PassSync to the latest libraries.
> . NSPR: nspr-win-4.10.6-1
> . NSS: nss-win-3.16.2.3-2
> . MOZLDAP: ldap-c-sdk-win-6.0.7-7
>
> By default, PassSync uses TLS1.1 and newer SSL versions supported
> by the NSS. To force to enable SSLv3.0, an environment variable
> LDAPSSL_ALLOW_OLD_SSL_VERSION has to be set with some non NULL
> value in Computer | Properties | Advanced system settings |
> Environment Variables | System variables, add
> variable: LDAPSSL_ALLOW_OLD_SSL_VERSION
> value: 1
> It will allow PassSync with this patch to connect to the server
> that runs only accept SSLv3.0.
> [...] conn=17 SSL3 128-bit AES
>
More information about the 389-devel
mailing list