[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: userPassword compare fix

To: openldap-devel@OpenLDAP.org
Subject: Re: userPassword compare fix
From: David Boreham <david_list@boreham.org>
Date: Tue, 24 Jan 2006 12:41:29 -0700
In-reply-to: <7.0.0.16.0.20060124094033.03912538@OpenLDAP.org>
References: <aa7373470601240750h6aea1278j@mail.gmail.com> <7.0.0.16.0.20060124094033.03912538@OpenLDAP.org>
User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)

Kurt D. Zeilenga wrote:

The current behavior is not considered a bug and hence it doesn't need "fixing". See RFC 2251/2252/2256.

I'm fairly sure that the behavior of the Netscape (and hence Sun) server was unintended. The code that does the hashing of the comparison value is deeply buried in the syntax plugin: a long way from the compare operation code. In fact I remember attempting to 'fix' it (that is, not hash the comparison value) a long time ago, only to discover that people had written applications that depended on the broken behavior...

Follow-Ups:
- Re: userPassword compare fix
  - From: "Oni (Paolo Meschi)" <paolo.meschi@gmail.com>

References:
- userPassword compare fix
  - From: "Oni (Paolo Meschi)" <paolo.meschi@gmail.com>
- Re: userPassword compare fix
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: userPassword compare fix
Next by Date: Re: Please test OPENLDAP_REL_ENG_2_3
Index(es):
- Chronological
- Thread