Mozilla Thunderbird Mail and News

Thunderbird address book won't use socks to access ldap server

Reported by Chris on 2008-06-27
2
Affects Status Importance Assigned to Milestone
Mozilla Thunderbird
Confirmed
Medium
mozilla-thunderbird (Ubuntu)
Medium
Unassigned

Bug Description

Binary package hint: mozilla-thunderbird

I have a number of Ubuntu systems on a private lan, behind a socks firewall.

When I use thunderbird I set the network connections to use socks, and give it the correct name and port number. Thunderbird itself works fine, I can send and receive email without problems. However when I configure the ldap server to use with thethunderbird address book, thunderbird will not resolve any ldap names to email addresses. I have double checked and I'm sure that the ldap settings are correct.

I sniffed the network during an exchange and I can see that normal thunderbird traffic being sent via socks. However I can see that thunderbird is trying to send the ldap traffic directly to the ldap server, not via socks. I include a wireshark screenshot showing what is happening.

This is Thunderbird 2.0.0.14, and Ubuntu 8.04

Is this bug *ever* going to be fixed? Can't be that difficult, can it?

-> Core:MailNews:LDAP Integration

Now Thunderbird 1.02 is out and this bug is not fixed yet :(
There are people that are using Thunderbird in a corporate environment and would
like to access LDAP address books that are outside the company network, thus
can only be accessed via proxy...

cc'ing Dan and Darin. I thought the socks stuff was transparent to the protocol
code.

For Necko clients, it is. But the LDAP XPCOM code uses the C SDK for networking
instead of Necko. I suspect the only way this is likely to get fixed is if at
some point the LDAP C SDK gets SOCKS support. Perhaps mcs can speak to whether
that's likely to happen...

I/O is pluggable (via callback functions Thunderbird could install). That would
probably be the way to Sock-ify LDAP. I don't know enough about Necko to know
how much work this would be.

Argh.. 1.05 is out and this bug is still present.. I really need external LDAP
access over socks..
Can someone point me to the code so I can try my luck please?

In looking at the directory/xpcom code, it looks to me like the code in
nsLDAPSecurityGlue.cpp does a lot of what would need to be done to support socks
(it "overrides" some of the libldap TCP I/O functions to make SSL work). I
wonder if socks works with LDAP if you use a secure (SSL) connection today?

http://lxr.mozilla.org/seamonkey/source/directory/xpcom/base/src/nsLDAPSecurityGlue.cpp

*** Bug 311196 has been marked as a duplicate of this bug. ***

I can confirme that this bug still exists with the current version of Thunderbird (1.0.7 Linux and Windows).

The nsLDAPSecurityGlue.cpp file mentioned above seems to handle the SSL'ed version of the LDAP protocol, not the usage of SOCKS.

I would be nice if someone could fix the box. I could help testing.

In , Moco (moco) wrote :

sorry for the spam. making bugzilla reflect reality as I'm not working on these bugs. filter on FOOBARCHEESE to remove these in bulk.

*** Bug 385388 has been marked as a duplicate of this bug. ***

I confirm this bug with TB 2.0.0.6 on Linux.

I'm using Thunderbird 2.0.0.12 on Mac OS X, and I also confirm that this bug is still present. I can access the mail servers via a SOCKS proxy, but not the corporate LDAP address book :(

Could someone please take this up and try to do something about it? It's quite an annoyance not to be able to access the address book.

Chris (lidgaca) wrote :

Binary package hint: mozilla-thunderbird

I have a number of Ubuntu systems on a private lan, behind a socks firewall.

When I use thunderbird I set the network connections to use socks, and give it the correct name and port number. Thunderbird itself works fine, I can send and receive email without problems. However when I configure the ldap server to use with thethunderbird address book, thunderbird will not resolve any ldap names to email addresses. I have double checked and I'm sure that the ldap settings are correct.

I sniffed the network during an exchange and I can see that normal thunderbird traffic being sent via socks. However I can see that thunderbird is trying to send the ldap traffic directly to the ldap server, not via socks. I include a wireshark screenshot showing what is happening.

This is Thunderbird 2.0.0.14, and Ubuntu 8.04

Chris (lidgaca) wrote :
Joel Goguen (jgoguen) wrote :

Thank you for your bug report. This bug has been reported to the developers of the software. You can track it and make comments here: https://bugzilla.mozilla.org/show_bug.cgi?id=218909

Changed in mozilla-thunderbird:
status: New → Confirmed
Changed in thunderbird:
status: Unknown → Confirmed

This has been reported against Thunderbird 2.0.0.14 at https://launchpad.net/bugs/243578.

Joel Goguen (jgoguen) on 2009-04-08
Changed in mozilla-thunderbird (Ubuntu):
importance: Undecided → Medium
status: Confirmed → Triaged

*** Bug 489978 has been marked as a duplicate of this bug. ***

Changed in thunderbird:
importance: Unknown → Medium

I confirm the bug with TB 3.1.6

I'm now on TB 3.1.9 (OS X) and this bug is still bothering me. Could someone please, please fix this?

Still a problem with Thunderbird-5.0... For example, when I ask to download the contact list from the LDAP server, I get "Replication failed" message INSTANTLY -- Address Book is not even attempting to connect...

Sending and reading e-mails works fine.

The age of this bug-report is really shameful, I might add...

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.