About:
The OpenLDAP Project is a collaborative effort to provide a robust, commercial-grade, fully featured, open source LDAP software suite. The project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop OpenLDAP Software and its related documentation. OpenLDAP Software provides a complete LDAP implementation including server, clients, C SDK, and associated tools.

Author:
OpenLDAP Project [contact developer]

Rating:	reset 1 2 3 4 5 6 7 8 9 10
8.50/10.00 (16 votes)

Homepage:
http://www.openldap.org/
Tar/GZ:
http://www.openldap.org/software/download/
Changelog:
http://www.openldap.org/software/release/changes.html
CVS tree (cvsweb):
http://www.openldap.org/devel/cvsweb.cgi
Bug tracker:
http://www.openldap.org/its/
Mailing list archive:
http://www.openldap.org/lists/openldap-software/
Mirror site:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS

Trove categories: [change]

[Development Status]		5 - Production/Stable
[Intended Audience]		Developers, System Administrators
[License]		OSI Approved
[Operating System]		POSIX
[Programming Language]		C
[Topic]		Database, Internet, Software Development :: Libraries, System :: Clustering/Distributed Networks, System :: Networking

Dependencies: [change]
No dependencies filed

 Branches

Branch	Version	Last release	License	URLs
LDAPv3	2.4.10	10-Jun-2008	OSI Approved
LDAPv2	1.2.13	11-Sep-2001	OSI Approved

 Articles referencing this project

Debian: New openldap2.3 packages fix denial of service by Patrick Lenz , in Security Sun, Apr 13th 2008 15:03 Red Hat: Updated openldap packages fix security issues by Patrick Lenz , in Security Mon, Mar 24th 2008 06:47 Red Hat: Updated openldap packages fix a security flaw by Patrick Lenz , in Security Sun, Nov 18th 2007 13:26 Red Hat: Updated openldap packages fix a security flaw by Patrick Lenz , in Security Sun, Nov 11th 2007 10:44 Red Hat: Updated openldap packages fix a security flaw by Patrick Lenz , in Security Sun, Jun 17th 2007 00:22

Red Hat: A updated openldap packages that fix a security flaw by Patrick Lenz , in Security Tue, May 8th 2007 01:30 Red Hat: Updated openldap and nss_ldap packages fix potential security issues by Patrick Lenz , in Security Mon, Oct 17th 2005 23:48 Red Hat: Updated openldap packages available by Patrick Lenz , in Security Thu, Feb 6th 2003 00:57 Debian: New openldap packages fix buffer overflows and remote exploit by Patrick Lenz , in Security Mon, Jan 13th 2003 07:37 [more articles]

 Comments

[»] Buggy and Bloated
by dmelomed - Jun 7th 2002 14:57:07

It seems the only close-to-production free LDAP server has gone the way of Sendmail. Oh well.

[reply] [top]

[»] Re: Buggy and Bloated
by Rev. Adam Tauno Williams - Jul 16th 2002 13:01:22


> It seems the only close-to-production
> free LDAP server has gone the way of
> Sendmail. Oh well.
I completely disagree. I use OpenLDAP in production at several sites and find it lean and rock-solid. I've never had slapd dump.

[reply] [top]

---

[»] Re: Buggy and Bloated
by dmelomed - Jul 26th 2002 19:11:15


>
> % It seems the only close-to-production
> % free LDAP server has gone the way of
> % Sendmail. Oh well.
>
>
> I completely disagree. I use OpenLDAP
> in production at several sites and find
> it lean and rock-solid. I've never had
> slapd dump.
I could consider 1.2.x series lean, but not 2.x.x series. You're obviously not subscribed to the mailing list are you?

[reply] [top]

---

[»] Re: Buggy and Bloated
by Rev. Adam Tauno Williams - Jul 28th 2002 11:29:58


>
> %
> % % It seems the only
> close-to-production
> % % free LDAP server has gone the way
> of
> % % Sendmail. Oh well.
> %
> %
> % I completely disagree. I use
> OpenLDAP
> % in production at several sites and
> find
> % it lean and rock-solid. I've never
> had
> % slapd dump.
>
>I could consider 1.2.x series lean, but
>not 2.x.x series. You're obviously not
>subscribed to the mailing list are you?
I "obviously" am subscribed to the list as I typically post multiple messages on an average day. I do not see any evidence of bloat. The backends are modular, you can install them or not. Most other changes from 1.x are due to the support of LDAPv3 over LDAPv2 which is a clear and obvious improvement. If LDAPv3 support is bloat than SSL support in Apache is bloat, and single sign-on technology such as Kerberos V in Windows2000 is bloat (try telling that to any end user). DSA structure and replication work almost identically to how they worked in 1.x.

I do see quite a few people on the list who seem to struggle; but most of this is clearly due to a.) not understanding what the basics concepts of LDAP are and what its purpose is b.) complete lack of any attempt to effectively use available documentation (which is admittadly scattered and quite a bit of it obsolete) c.) failure to understand the delineation of LDAP, pam, nss, sasl, etc...

[reply] [top]

---

[»] Re: Buggy and Bloated
by dmelomed - Nov 24th 2003 21:18:21

It would benefit to learn about better software design. See djbdns, or SQLite for instance. OpenLDAP just doesn't fit either KISS or good design. Also see tinyldap.

[reply] [top]

---

[»] Re: Buggy and Bloated
by Howard Chu - Oct 8th 2005 20:08:32


> It would benefit to learn about better

> software design.

>

> See djbdns, or SQLite for instance.

> OpenLDAP just doesn't fit either KISS or

> good design.

>

> Also see tinyldap.

>


If you're actually a competent enough programmer to be rendering judgements about good software design, why don't you contribute patches to the project? That *is* how open source improves, after all.

[reply] [top]

---

[»] Re: Buggy and Bloated
by Phil Haigh - Aug 30th 2006 05:28:13


>

> % It seems the only close-to-production

> % free LDAP server has gone the way of

> % Sendmail. Oh well.

>

>

> I completely disagree. I use OpenLDAP

> in production at several sites and find

> it lean and rock-solid. I've never had

> slapd dump.

No release since June 2005? 86,000 hits on google for 'openldap corruption' and many people don't seem to be able to find answers? I'm reminded of Apache FOP which went for over two years with not even a bug fix release. it doesn't matter how few bugs there are - if it affects you, you'd like to report it and get it fixed. Otherwise, you have to use something else.

And if so many people have problems with the standard deployment (BerkleyDB back end) why is there no BerkleyDB FAQ/known issues?

[reply] [top]

---

[»] Re: Buggy and Bloated
by Rev. Adam Tauno Williams - Aug 30th 2006 20:19:51

> No release since June 2005?

Please check your facts; there have been several releases of OpenLDAP since then. There was one last week. The Freshmeat entry is simply out of date.

> affects you, you'd like to report it and get it fixed.

If it affects you and not lots of other people, maybe it isn't broken.

> And if so many people have problems with
> the standard deployment (BerkleyDB back
> end) why is there no BerkleyDB FAQ/known
> issues?

But there is, start here - http://www.openldap.org/faq/data/cache/1166.html

At least 9 out of 10 OpenLDAP related questions I see are answered right there on the website.


[reply] [top]

---

[»] Re: Buggy and Bloated
by roger webb - Apr 3rd 2005 17:39:10

I think you are a tad to harsh...

[reply] [top]

---

[»] Re: Buggy and Bloated
by Rick - Oct 27th 2005 19:50:29


> It seems the only close-to-production

> free LDAP server has gone the way of

> Sendmail. Oh well.

I disagree aswell. What are you basing that on?

[reply] [top]

---

[»] Documentation
by Rev. Adam Tauno Williams - Mar 21st 2002 14:24:19

I've written (and am maintaining) a relatively extensive presentation concerning LDAP, OpenLDAP, and integration with various services. ldapv3.pdf hosted by the Kalamazoo Linux Users Group. (Kalamazoo, Mi. USA)

[reply] [top]