[Gunnar Wrobel] Re: sasl ldap problem
Gunnar Wrobel
wrobel at pardus.de
Fri Nov 17 09:43:22 CET 2006
Divan Santana <Divan.Santana at gmail.com> writes:
> Hi All,
>
> I am glad to contribute this fix back. I hope someone finds it useful.
> I think it might be kubuntu specific.
>
> http://www.kolab.org/pipermail/kolab-users/2006-February/004394.html
> mv /dev/random /dev/random.backup
> ln -s /dev/urandom /dev/random
>
> Can't believe that fixed it. I don't quite understand but at least its
> working.
Basically you run out of entropy which leads to a hanging system if an
application needs real random numbers (for key generation etc.). What
you do by exchanging /dev/random with /dev/urandom is to use generated
random numbers which could be guessed after an attaker collected
enough data. Still unlikely though ;)
You should also be able to use the rngd daemon from the gkernel
project (http://sourceforge.net/projects/gkernel/).
>> Nov 16 13:10:01 tmgmen-bbb <debug> saslauthd[21428]: Domain/Realm not
>> available.
>> Nov 16 13:10:13 tmgmen-bbb <debug> saslauthd[21441]: ldap_simple_bind()
>> failed -1 (Can't contact LDAP server).
> Now POP doesn't time out randomly etc.
The workaround fixes the ldap_simple_bind() problem also or is it just
the POP3 problem that gets fixed?
Cheers,
Gunnar
--
____ http://www.pardus.de _________________ http://gunnarwrobel.de _
E-mail : wrobel at pardus.de Dr. Gunnar Wrobel
Tel. : +49 40 432 72335 Hartwig-Hesse Str. 12
Fax : +49 40 432 70855 D-20257 Hamburg
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> Mail at ease - Kolab out of the box << P at rdus
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
More information about the users
mailing list