Re: [Ldapdns-devel] Incompatibility with OpenLDAP 2.2.23?

[Mrs. B. <mrs...@ni...>]

On Tue, 2005-11-15 at 22:39 +0000, Carl Perry wrote:
> Sending this to the list, since I haven't seen a reply in a little over two weeks...
> 
> On Mon, 2005-10-31 at 23:03 -0500, Mrs. Brisby wrote:
> > Have you tried binding with plain, non-sasl authentication?
> 
> Normally I bind using simple auth anyway, but it seems that anonymous
> doesn't work either.  I've posted two ethereal captures that may help:
> anonymous bind - http://edolnx.net/misc/ldapdns3/anon-bind-failure.cap
> simple bind - http://edolnx.net/misc/ldapdns3/simple-bind-failure.cap
> Each one of the captures are about 2MB, and contains only the LDAP
> traffic generated by ldapdns3-dg during startup.  It gets quite pissed
> when it cannot bind :)

That it does :)

Your OpenLDAP server doesn't appear to be allowing v2 binds. Those are
necessary for a simple bind to work from ldapdns- it doesn't use the
OpenLDAP client libs.

> > What LDAP server are you attempting to communicate with?
> 
> The OpenLDAP server that ships with Debian Sarge (2.2.23) over loopback.
> I've also placed in http://edolnx.net/misc/ldapdns3/ the annoymous and
> simple ldaphost files that I used.  The "run" command from the service
> (I have ldapdns3 running inside daemontools) and the env directory are
> also included.
> 
> If there is anything else I can do to help, please don't hesitate to
> ask!  ldapdns2 is failing to respond to queries under moderate loads
> until restarted, and I'd like to start tesing ldapdns3 to see if the
> same problems occur or if it solves the problem.  Thanks!

I'll be honest- I haven't had time to touch ldapdns3 in a very long
time. It works fairly well, but I've been waiting for either interest
from the outside or failure on the inside to get back into it, and
neither has happened yet :-/

I'm still using ldapdns1 in production on our high-load systems, and
ldapdns2 on our internal network.