Ubuntu
thunderbird package

Thunderbird address book won't use socks to access ldap server

Bug #243578 reported by Chris
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Mozilla Thunderbird
Confirmed
Unknown
thunderbird (Ubuntu)
Triaged
Medium
Unassigned

Bug Description

Binary package hint: mozilla-thunderbird

I have a number of Ubuntu systems on a private lan, behind a socks firewall.

When I use thunderbird I set the network connections to use socks, and give it the correct name and port number. Thunderbird itself works fine, I can send and receive email without problems. However when I configure the ldap server to use with thethunderbird address book, thunderbird will not resolve any ldap names to email addresses. I have double checked and I'm sure that the ldap settings are correct.

I sniffed the network during an exchange and I can see that normal thunderbird traffic being sent via socks. However I can see that thunderbird is trying to send the ldap traffic directly to the ldap server, not via socks. I include a wireshark screenshot showing what is happening.

This is Thunderbird 2.0.0.14, and Ubuntu 8.04

See original description
Revision history for this message
In , Tom-designobjekt (tom-designobjekt) wrote :

Is this bug *ever* going to be fixed? Can't be that difficult, can it?

Revision history for this message
In , Bugzilla-dougweb (bugzilla-dougweb) wrote :

-> Core:MailNews:LDAP Integration

Revision history for this message
In , Tom-designobjekt (tom-designobjekt) wrote :

Now Thunderbird 1.02 is out and this bug is not fixed yet :(
There are people that are using Thunderbird in a corporate environment and would
like to access LDAP address books that are outside the company network, thus
can only be accessed via proxy...

Revision history for this message
In , Bienvenu (bienvenu) wrote :

cc'ing Dan and Darin. I thought the socks stuff was transparent to the protocol
code.

Revision history for this message
In , Dmose (dmose) wrote :

For Necko clients, it is. But the LDAP XPCOM code uses the C SDK for networking
instead of Necko. I suspect the only way this is likely to get fixed is if at
some point the LDAP C SDK gets SOCKS support. Perhaps mcs can speak to whether
that's likely to happen...

Revision history for this message
In , Mcs-pearlcrescent (mcs-pearlcrescent) wrote :

I/O is pluggable (via callback functions Thunderbird could install). That would
probably be the way to Sock-ify LDAP. I don't know enough about Necko to know
how much work this would be.

Revision history for this message
In , Tom-designobjekt (tom-designobjekt) wrote :

Argh.. 1.05 is out and this bug is still present.. I really need external LDAP
access over socks..
Can someone point me to the code so I can try my luck please?

Revision history for this message
In , Mcs-pearlcrescent (mcs-pearlcrescent) wrote :

In looking at the directory/xpcom code, it looks to me like the code in
nsLDAPSecurityGlue.cpp does a lot of what would need to be done to support socks
(it "overrides" some of the libldap TCP I/O functions to make SSL work). I
wonder if socks works with LDAP if you use a secure (SSL) connection today?

http://lxr.mozilla.org/seamonkey/source/directory/xpcom/base/src/nsLDAPSecurityGlue.cpp

Revision history for this message
In , Mkmelin+mozilla (mkmelin+mozilla) wrote :

*** Bug 311196 has been marked as a duplicate of this bug. ***

Revision history for this message
In , S-stonjek1 (s-stonjek1) wrote :

I can confirme that this bug still exists with the current version of Thunderbird (1.0.7 Linux and Windows).

The nsLDAPSecurityGlue.cpp file mentioned above seems to handle the SSL'ed version of the LDAP protocol, not the usage of SOCKS.

I would be nice if someone could fix the box. I could help testing.

Revision history for this message
In , Moco (moco) wrote :

sorry for the spam. making bugzilla reflect reality as I'm not working on these bugs. filter on FOOBARCHEESE to remove these in bulk.

Revision history for this message
In , Philringnalda (philringnalda) wrote :

*** Bug 385388 has been marked as a duplicate of this bug. ***

Revision history for this message
In , Torsten Bronger (bronger) wrote :

I confirm this bug with TB 2.0.0.6 on Linux.

Revision history for this message
In , Anand Buddhdev (arbuddhdev) wrote :

I'm using Thunderbird 2.0.0.12 on Mac OS X, and I also confirm that this bug is still present. I can access the mail servers via a SOCKS proxy, but not the corporate LDAP address book :(

Could someone please take this up and try to do something about it? It's quite an annoyance not to be able to access the address book.

Revision history for this message
Chris (lidgaca) wrote :

Binary package hint: mozilla-thunderbird

I have a number of Ubuntu systems on a private lan, behind a socks firewall.

When I use thunderbird I set the network connections to use socks, and give it the correct name and port number. Thunderbird itself works fine, I can send and receive email without problems. However when I configure the ldap server to use with thethunderbird address book, thunderbird will not resolve any ldap names to email addresses. I have double checked and I'm sure that the ldap settings are correct.

I sniffed the network during an exchange and I can see that normal thunderbird traffic being sent via socks. However I can see that thunderbird is trying to send the ldap traffic directly to the ldap server, not via socks. I include a wireshark screenshot showing what is happening.

This is Thunderbird 2.0.0.14, and Ubuntu 8.04

Revision history for this message
Chris (lidgaca) wrote :
Revision history for this message
Joel Goguen (jgoguen) wrote :

Thank you for your bug report. This bug has been reported to the developers of the software. You can track it and make comments here: https://bugzilla.mozilla.org/show_bug.cgi?id=218909

Changed in mozilla-thunderbird:
status: New → Confirmed
Bug Watch Updater (bug-watch-updater)
Changed in thunderbird:
status: Unknown → Confirmed
Revision history for this message
In , Jgoguen+mozillabugs (jgoguen+mozillabugs) wrote :

This has been reported against Thunderbird 2.0.0.14 at https://launchpad.net/bugs/243578.

Joel Goguen (jgoguen)
Changed in mozilla-thunderbird (Ubuntu):
importance: Undecided → Medium
status: Confirmed → Triaged
Revision history for this message
In , Mkmelin+mozilla (mkmelin+mozilla) wrote :

*** Bug 489978 has been marked as a duplicate of this bug. ***

Bug Watch Updater (bug-watch-updater)
Changed in thunderbird:
importance: Unknown → Medium
Revision history for this message
In , E. MAS (erwan-mas) wrote :

I confirm the bug with TB 3.1.6

Revision history for this message
In , Arhbkb (arhbkb) wrote :

I'm now on TB 3.1.9 (OS X) and this bug is still bothering me. Could someone please, please fix this?

Revision history for this message
In , Mi+mozilla (mi+mozilla) wrote :

Still a problem with Thunderbird-5.0... For example, when I ask to download the contact list from the LDAP server, I get "Replication failed" message INSTANTLY -- Address Book is not even attempting to connect...

Sending and reading e-mails works fine.

The age of this bug-report is really shameful, I might add...

Mathew Hodson (mhodson)
affects: mozilla-thunderbird (Ubuntu) → thunderbird (Ubuntu)
Revision history for this message
In , Stephane-chazelas+mza (stephane-chazelas+mza) wrote :

I can reproduce with Thunderbird 78.8.0 on Debian.

IMAP, IMAPS, SMTPS connections go via the configured SOCKS5 proxy, but LDAPS connections are not proxied.

Bug Watch Updater (bug-watch-updater)
Changed in thunderbird:
importance: Medium → Unknown
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.