[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#4488) back-ldap uses proxyAuthz for idassert when protocol is not LDAPv3

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#4488) back-ldap uses proxyAuthz for idassert when protocol is not LDAPv3
From: ando@sys-net.it
Date: Thu, 13 Apr 2006 14:25:36 GMT

This specific idassert issue is now fixed in HEAD; at least one issue
remains: if the client connects LDAPv3 and uses controls, and the proxy
enforces LDAPv2, either controls should not be passed to the remote DSA,
if none of them is critical, or the operation should be rejected.

p.



Ing. Pierangelo Masarati
Responsabile Open Solution
OpenLDAP Core Team

SysNet s.n.c.
Via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
------------------------------------------
Office:   +39.02.23998309          
Mobile:   +39.333.4963172
Email:    pierangelo.masarati@sys-net.it
------------------------------------------

Prev by Date: (ITS#4488) back-ldap uses proxyAuthz for idassert when protocol is not LDAPv3
Next by Date: (ITS#4489) Failed slapd startup -> core in ldap_ld_free
Index(es):
- Chronological
- Thread