[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Antw: Re: Max length allowed for a password

To: <openldap-technical@openldap.org>
Subject: Re: Antw: Re: Max length allowed for a password
From: Hallvard Breien Furuseth <h.b.furuseth@usit.uio.no>
Date: Fri, 13 Dec 2013 12:20:32 +0100
In-reply-to: <fe9d9d96bafe12f6af2d7785cd7f2c6c@ulrik.uio.no>
References: <1014D25C-C994-46EB-B41A-F2EFD99C1805@linfield.edu> <52A62C26.8080501@symas.com> <52AAC2B5020000A100013808@gwsmtp1.uni-regensburg.de> <fe9d9d96bafe12f6af2d7785cd7f2c6c@ulrik.uio.no>
User-agent: Roundcube Webmail/hz/2m6f.frs/uio-2

On 2013-12-13 08:57, Hallvard Breien Furuseth wrote:

On 2013-12-13 08:17, Ulrich Windl wrote:
Howard Chu <hyc@symas.com> schrieb am 09.12.2013
There are no maximum lengths in LDAP. Limits imposed by otherapplications
depend on the particular application.
Right, but what about typical input buffer lengths in the openLDAPtools (like
ldapsearch)?
Right... libldap has "#define LDIF_MAXLINE 4096", you must wrap
longer lines (start each continuation line with a space).
That doesn't impose a max length of the attribute value though.


More to the point, ldapsearch() & co use getpassphrase() if available,
and a Solaris manpage says it limits input to 257 chars.
The fallback implementation in OpenLDAP liblutil allows 512
including the final \0.

--
Hallvard

Follow-Ups:
- Re: Antw: Re: Max length allowed for a password
  - From: Howard Chu <hyc@symas.com>

References:
- Max length allowed for a password
  - From: Rob Tanner <rtanner@linfield.edu>
- Re: Max length allowed for a password
  - From: Howard Chu <hyc@symas.com>
- Antw: Re: Max length allowed for a password
  - From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>
- Re: Antw: Re: Max length allowed for a password
  - From: Hallvard Breien Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: Antw: Re: Max length allowed for a password
Next by Date: Re: ldapsearch limit of 500 entries
Index(es):
- Chronological
- Thread