[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: syncrepl, database is not complete...

To: openldap-technical@openldap.org
Subject: Re: syncrepl, database is not complete...
From: Buchan Milne <bgmilne@staff.telkomsa.net>
Date: Mon, 18 Feb 2008 09:41:31 +0200
Cc: Dieter Kluenter <dieter@dkluenter.de>, Alain Siani <asiani@free.fr>
Content-disposition: inline
In-reply-to: <87lk5j9y6g.fsf@magenta.l4b.de>
References: <47B82E75.8050908@free.fr> <87lk5j9y6g.fsf@magenta.l4b.de>
User-agent: KMail/1.9.7

On Sunday 17 February 2008 21:32:07 Dieter Kluenter wrote:
> > password-hash {CRYPT}
>
> Don't use crypt! Because you never know which crypt library is linked
> against your application, but this is only one of many reasons.

I'm sorry, but this doesn't belong in this thread IMHO. There *are* valid 
reasons to enforce a specific password hash, especially if devices in the 
environment in question only support crypt (yes, I have some).

> > allow bind_v2
>
> This is not recommended, LDAPv3 is out for more than 10 years now,
> LDAPv2 is historic!

But, I also have some proprietary applications which are still LDAPv2.

Neither of these impact the issue at hand, so I don't see the point in 
evangelising them without caveats (like, "if you're sure you don't have 
applications which rely on these settings").

Regards,
Buchan

Follow-Ups:
- Re: syncrepl, database is not complete...
  - From: "asiani@free.fr" <alain.siani@gmail.com>

References:
- syncrepl, database is not complete...
  - From: Alain Siani <asiani@free.fr>
- Re: syncrepl, database is not complete...
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: LDAP inquiry
Next by Date: Re: syncrepl, database is not complete...
Index(es):
- Chronological
- Thread