[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP Authentication

To: f.sileno@agora.it, Cthulhu <f.sileno@agora.it>
Subject: Re: LDAP Authentication
From: Urban Lindberg <urban.lindberg@systech.se>
Date: Tue, 14 Nov 2000 10:38:36 +0100 (MET)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20001114095856.A25491@asistemi.stm.it>
References: <20001114095856.A25491@asistemi.stm.it>
User-agent: IMP/PHP IMAP webmail program 2.2.3

Hi

To send a blank password is the same as doing an anonymous bind.

It exists a patch for this, alternativ you do 
defaultaccess none
in slapd.conf

I once used the patch, but did not like the solution, considering hat I have to
apply the patch for every new release, so now I make sure that defaultaccess is
none.

/Urban
Citerat från  Cthulhu <f.sileno@agora.it>:

> 
> I have a strange behavoiur in both OpenLDAP 1.2.11 and 2.0.6: when I
> try to authenticate a user with "ldapadd" or trought a PHP / JSP page,
> the user is authenticated even if it leave a blank password.
> 
> It seems to be an half working auth, since the user achieve only READ
> permission, but of course this is not a wanted feature.
> 
> Some one is suggesting that this can be a compilation problem, I'm
> worried that there is also something I don't know about LDAP.
> 
> Can some point me in the right direction?
> 
>         slapdingly,
>            Cthulhu
> 
> -- 
>    Ph'nglui mglw'nafh Cthulhu http://www.rlyeh.it/ wgah'nagl fhtgan!
> 			 <f.sileno@agora.it>  
> 
> 



--
Urban Lindberg
Systech Consulting AB
Tel: +46 60 64 11 00
Cellular: +46 70 312 91 97
E-mail: urban.lindberg@systech.se

Go to http://roam.systech.se

Follow-Ups:
- Re: LDAP Authentication
  - From: Cthulhu <f.sileno@agora.it>

References:
- LDAP Authentication
  - From: Cthulhu <f.sileno@agora.it>

Prev by Date: LDAP Authentication
Next by Date: Re: LDAP Authentication
Index(es):
- Chronological
- Thread