203598 – net-ftp/proftpd - mod_ldap can't connect if using TLS

Bug 203598 - net-ftp/proftpd - mod_ldap can't connect if using TLS

Summary: net-ftp/proftpd - mod_ldap can't connect if using TLS

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Luca Longinotti (RETIRED)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2007-12-28 18:36 UTC by Fabrice Bacchella
Modified:	2008-04-17 08:00 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Fabrice Bacchella 2007-12-28 18:36:51 UTC

If you use LDAP authentication for proftpd and want it to connect to the ldap server using SSL, it fails, even with ssl compiled in.
My proftpd configuration (from eix proftpd) :
acl ldap ncurses nls opensslcrypt pam ssl tcpd -authfile -clamav -hardened -ifsession -ipv6 -mysql -noauthunix -postgres -radius -rewrite -selinux -shaper -sitemisc -softquota -vroot -xinetd


Reproducible: Always

Steps to Reproduce:
1. USE="opensslcrypt ldap ssl" emerge net-ftp/proftpd
2. add to  /etc/proftpd/proftpd.conf the lines:
LDAPAuthBinds on
LDAPUseTLS on
3. start proftpd:
 proftpd -n 

Actual Results:  
It stops with the message: 
 - Fatal: LDAPUseTLS: LDAPUseTLS: You must edit mod_ldap.c and recompile with USE_LDAP_TLS enabled in order to use TLS. on line 45 of '/etc/proftpd/proftpd.conf'



Expected Results:  
just start and then connect to the ldap servers using tls, to avoiding having password on clear

Comment 1 Luca Longinotti (RETIRED) gentoo-dev

2008-04-17 08:00:26 UTC

This should be fixed in proftpd-1.3.1.
Best regards, CHTEKK.