[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Debugging a user authentication

To: Michael Ströder <michael@stroeder.com>
Subject: Re: Debugging a user authentication
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Date: Thu, 20 Nov 2008 13:58:09 +0100
Cc: openldap-technical@openldap.org
In-reply-to: <49255BAF.9050200@stroeder.com>
References: <094A73044298734FB7D58CAAA319E1D6013CE4F2@UBIQ-SERV1.ubiquisys.local> <20081117202846.GA7078@tile.skills-1st.co.uk> <hbf.20081118phvv@bombur.uio.no> <492493F4.6030705@symas.com> <hbf.20081120zj54@bombur.uio.no> <49255BAF.9050200@stroeder.com>

Michael Ströder writes:
>Hallvard B Furuseth wrote:
>>Howard Chu writes:
>> [Pulling last line up front]
>>> userPassword is a string of *octets* not *characters*...
>> 
>> This is backwards.  That simply means anything can be stored there
>> - so password charset policy, if any, is up to whoever stores
>> userPassword values.
> 
> Yupp. And this lead to interop problems.

Well, yes.  In the sense that "LDAP auth won't work at our site" is
no interop problem while "it works when clients do it <this way>" is.

-- 
Hallvard

Follow-Ups:
- Re: Debugging a user authentication
  - From: Michael Ströder <michael@stroeder.com>

References:
- RE: Debugging a user authentication
  - From: "Adrian Marsh" <Adrian.Marsh@ubiquisys.com>
- Re: Debugging a user authentication
  - From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
- Re: Debugging a user authentication
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: Debugging a user authentication
  - From: Howard Chu <hyc@symas.com>
- Re: Debugging a user authentication
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: Debugging a user authentication
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Debugging a user authentication
Next by Date: Re: Debugging a user authentication
Index(es):
- Chronological
- Thread