Openldap意外关闭

发布时间：2020-12-15 22:38:24 所属栏目：安全来源：网络整理

导读：我在CentSO 6.4 x86_64上使用berkeleydb 5.0.32.NC从源码tarball安装了openldap 2.4.35. 运行几天后,ldap服务器意外关闭.这是最后一个日志： ber_get_nextTLS trace: SSL3 alert read:warning:close notify 52b7b798 ber_get_next on fd 13 failed errno=0 (

我在CentSO 6.4 x86_64上使用berkeleydb 5.0.32.NC从源码tarball安装了openldap 2.4.35.

运行几天后,ldap服务器意外关闭.这是最后一个日志：

ber_get_next
TLS trace: SSL3 alert read:warning:close notify 
52b7b798 ber_get_next on fd 13 failed errno=0 (Success)
52b7b798 conn=1023 op=70 do_unbind
52b7b798 connection_close: conn=1023 sd=13
TLS trace: SSL3 alert write:warning:close notify
52b7cbba daemon: shutdown requested and initiated.
52b7cbba slapd shutdown: waiting for 0 operations/tasks to finish
52b7cbba slapd shutdown: initiated
52b7cbba ====> bdb_cache_release_all
52b7cbba slapd destroy: freeing system resources.
52b7cbba slapd stopped.

配置文件(slapd.conf)：

include         /home/ucportal/local/openldap/etc/openldap/schema/core.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/corba.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/cosine.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/duaconf.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/dyngroup.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/inetorgperson.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/java.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/misc.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/nis.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/openldap.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/ppolicy.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/collective.schema
include         /home/ucportal/local/openldap/etc/openldap/schema/uc.schema

pidfile         /home/ucportal/local/openldap/var/run/slapd.pid
argsfile        /home/ucportal/local/openldap/var/run/slapd.args

loglevel        1
logfile /home/ucportal/openldap/var/log/slapd.log

database        bdb
suffix          "dc=ucweb,dc=com"
rootdn          "cn=admin,dc=ucweb,dc=com"

rootpw  123456

directory       /home/ucportal/local/openldap/var/openldap-data

index   objectClass     eq
index entryUUID,entryCSN eq

TLSCACertificateFile /home/ucportal/openldap/etc/openldap/cacerts/ca.crt
TLSCertificateFile /home/ucportal/openldap/etc/openldap/ldap-server.crt
TLSCertificateKeyFile /home/ucportal/openldap/etc/openldap/ldap-key.pem

注意：我使用非root用户安装并运行openldap

我用这个命令启动ldap守护进程：slapd -f~ / openldap / etc / openldap / slapd.conf -d 1 -h’ldaps：//0.0.0.0：6361′

有什么建议？

解决方法

这是Open-LDAP服务器的一个非常常见的问题,首先我建议您将此问题迁移到 serverfault.这将是一个很好的做法,始终使用root权限运行您的守护进程.

基于我迄今为止的研究,我想与您分享这些链接,我希望他们可以帮助您解决问题.

> http://www.clearfoundation.com/component/option,19945/
> http://www.openldap.org/lists/openldap-software/200502/msg00268.html

配置OpenLDAP

> https://serverfault.com/questions/138286/configuring-openldap-and-ssl
> http://www.openldap.org/doc/admin24/slapdconf2.html

（编辑：李大同）

【声明】本站内容均来自网络，其相关言论仅代表作者个人观点，不代表本站立场。若无意侵犯到您的权利，请及时与联系站长删除相关内容!