[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap password policy approach

To: Ludovic Poitou <ludovic.poitou@france.Sun.COM>
Subject: Re: ldap password policy approach
From: "Kurt D. Zeilenga" <kurt@boolean.net>
Date: Thu, 28 Oct 1999 10:54:33 -0700
Cc: prasanta@netscape.com, Jim Sermersheim <JIMSE@novell.com>, ietf-ldapext@netscape.com, kurt@openldap.org
In-reply-to: <381886EF.3ADF57CC@France.sun.com>
References: <3.0.5.32.19991027194428.00973960@localhost> <381881F1.250D9866@netscape.com>
Resent-date: Thu, 28 Oct 1999 10:55:23 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"KhlOdD.A.2VB.H3IG4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

At 07:25 PM 10/28/99 +0200, Ludovic Poitou wrote:
>By not describing the pwdHistory attribute type, we will hit some
>interoperability problems with heterogeneous replicated environment
>(multi-master replication with different vendors servers).
>The pwdHistory attribute needs to be replicated and all servers need to
>know how to check a password against the history. Therefore, we need to
>specify how it looks like.

As we divorce the issue of password policy and storage, I believe
we'll find that how to store history of passwords should be
discussed as a storage issue, not a policy issue.

	Kurt

----
Kurt D. Zeilenga		<kurt@boolean.net>
Net Boolean Incorporated	<http://www.boolean.net/>

References:
- Re: ldap password policy approach
  - From: "Kurt D. Zeilenga" <kurt@boolean.net>
- Re: ldap password policy approach
  - From: prasanta@netscape.com (Prasanta Behera)
- Re: ldap password policy approach
  - From: Ludovic Poitou <ludovic.poitou@france.Sun.COM>

Prev by Date: Re: ldap password policy approach
Next by Date: RE: proposed standard for password syntaxes
Index(es):
- Chronological
- Thread