lib-ldap: Set minimum protocol if supported by library

diff --git a/src/lib-ldap/ldap-connection.c b/src/lib-ldap/ldap-connection.c
index 7b5caa091dfd6c8d959eb698f3770e09d2c06547..8a468bde44de0cc2786b442e56b0e5ecd792faec 100644 (file)
--- a/src/lib-ldap/ldap-connection.c
+++ b/src/lib-ldap/ldap-connection.c
@@ -55,10 +55,11 @@ int ldap_connection_setup(struct ldap_connection *conn, const char **error_r)
        }
 
        ldap_set_option(conn->conn, LDAP_OPT_X_TLS, &opt);
+#ifdef LDAP_OPT_X_TLS_PROTOCOL_MIN
        /* refuse to connect to SSLv2 as it's completely insecure */
        opt = LDAP_OPT_X_TLS_PROTOCOL_SSL3;
        ldap_set_option(conn->conn, LDAP_OPT_X_TLS_PROTOCOL_MIN, &opt);
-
+#endif
        opt = conn->set.timeout_secs;
        /* default timeout */
        ldap_set_option(conn->conn, LDAP_OPT_TIMEOUT, &opt);