atom feed30 messages in org.openldap.openldap-softwareRe: failover config: servers with sam...
FromSent OnAttachments
Emmanuel DreyfusJul 23, 2007 6:51 am 
Quanah Gibson-MountJul 23, 2007 11:01 am 
Emmanuel DreyfusJul 23, 2007 1:09 pm 
Quanah Gibson-MountJul 23, 2007 1:18 pm 
Russ AllberyJul 23, 2007 4:35 pm 
Christopher CowartJul 23, 2007 7:40 pm 
Howard ChuJul 23, 2007 9:58 pm 
Emmanuel DreyfusJul 24, 2007 1:02 am 
Howard ChuJul 24, 2007 1:54 am 
Emmanuel DreyfusJul 24, 2007 12:18 pm 
Quanah Gibson-MountJul 25, 2007 8:53 am 
Emmanuel DreyfusJul 25, 2007 9:07 am 
Quanah Gibson-MountJul 25, 2007 9:48 am 
Michael StröderJul 25, 2007 9:53 am 
Emmanuel DreyfusJul 25, 2007 10:36 am 
Quanah Gibson-MountJul 25, 2007 10:47 am 
Howard ChuJul 25, 2007 2:31 pm 
Michael StröderJul 25, 2007 2:39 pm 
Howard ChuJul 25, 2007 2:45 pm 
Russ AllberyJul 25, 2007 2:46 pm 
Norman GaywoodJul 25, 2007 3:04 pm 
Emmanuel DreyfusJul 25, 2007 8:31 pm 
Emmanuel DreyfusJul 25, 2007 8:31 pm 
Howard ChuJul 25, 2007 11:18 pm 
Ralf HaferkampJul 26, 2007 1:28 am 
Emmanuel DreyfusJul 26, 2007 4:04 am 
Emmanuel DreyfusJul 26, 2007 4:04 am 
Donn CaveJul 26, 2007 9:39 am 
Ralf HaferkampJul 26, 2007 11:47 am 
Howard ChuJul 27, 2007 2:14 am 
Subject:Re: failover config: servers with same DNS address and TLS, subjectAltName extension
From:Quanah Gibson-Mount (
Date:Jul 25, 2007 9:48:00 am

--On Wednesday, July 25, 2007 4:07 PM +0000 Emmanuel Dreyfus <> wrote:

On Wed, Jul 25, 2007 at 08:53:22AM -0700, Quanah Gibson-Mount wrote:

I hope people do some testing before rolling a copy/pasted configuration in production...

Experience shows they generally don't. Your posts will likely show up now in google searches by people who aren't really interested in going and actually reading documentation, and/or end up in some forsaken "how-to". :/

I hope so. I have been googling for a starting point without much success, hence the desire to add some information. Indeed iit's not perfect, but it's just a post in a mailing list, it's not a FAQ entry. And since people point out the mistakes in the thread, the curious reader should have everything needed at hand to succeed.

What do you prefer? 1) The beginner find hardly no information, gives up after 2 days of failures, and will claim everywhere that OpenLDAP is the most frustrating software he had to deal with

As pointed out by Howard multiple times, nearly everything you "couldn't find" was actually available online, in the form of published documentation, by the folks who provided the software. The fact that you went to Google *before* going to the sites that actually distribute the software and reading their documentation is unfortunately the same thing many other people do to. And then they tend to complain about the lack of documentation.

2) It finds some hints with follow-up comments and can either screw his setup by just copy/pasting without a though, or read the thread and find the missing pieces he needs by himself.

They'll screw up their set up, and then they'll send barages of email asking why things didn't work, because they expect it to work the first time, and then they'll go around claming that OpenLDAP or some other software is the most frustrating software to deal with because they get told to actually go read the documentation.


-------------------- Zimbra :: the leader in open source messaging and collaboration