[Jenkins-infra] Ldap PostMortem?

Olblak me at olblak.com
Wed May 2 16:36:51 UTC 2018


Hey,
A small follow up with ldap issues from previous days.
Last Saturday, I migrated the Ldap server on the Kubernetes cluster and after a while, the Ldap server started handling Tls connections in a very weird way with errors like 'SSL_connect:error in SSLv3 read server key exchange B'.
Connections on port 389 (not tls) were working as expected.
I couldn't find the root cause neither reproduce it in a sandbox environment so I decided to move from an alpine based image to Debian which use GnuTls instead of openssl.
Previously errors started to come after few hours so I can't tell at the moment if errors are gone.

---
-> gpg --keyserver keys.gnupg.net --recv-key 52210D3D
---


More information about the Jenkins-infra mailing list