Brian May <[EMAIL PROTECTED]> writes: > My guess is that the original problem isn't so much due to a bug in > any application or library, but the fact that the two versions of the > TLS libraries end up getting pulled into one application.
[...] > This is evil :-( Yes. It's really a nasty problem, and the situation that the LDAP libraries are in right now are fundamentally broken. They're barely functional with TLS right now; they do work in some situations, but they're not very stable. And due to the OpenSSL licensing conflict with the GPL, we can't (under Debian's normal interpretation of copyright law) just build everything with OpenSSL. The world really should be much nicer under 2.4. It's almost tempting to just package the current CVS HEAD of OpenLDAP, on the grounds that it may still be less broken than what we have now, but unfortunately the directory *server* part would probably be much less stable than what we have now. -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
