This may need to be forwarded to Bugzilla. I would like to see an option when setting up Bugzilla for LDAP authentication, including the ability to select a cacert file that allows you to use SSL or TLS connections so that login information is not sent clear text from the Bugzilla server to the LDAP server. This is especially useful when using LDAP for centralized passwords and they should stay secure. At the moment I am forced to update the file: o /Bugzilla/Auth/LDAP.pm and add the line: o $LDAPconn->start_tls(cafile => '/ca/cert/path/file'); To enable TLS.
And yes, this is an upstream feature request. See Bugzilla's bugs: - 216902 (http://bugzilla.mozilla.org/show_bug.cgi?id=216902) - 250916 (http://bugzilla.mozilla.org/show_bug.cgi?id=250916)
Its upstream so no point tracking it here.