[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#3673) ldapsearch -y

Full_Name: Morgan Nilsson
Version: 2.2.13-2
OS: Fedora Core 3
Submission from: (NULL) (


"ldapsearch -y /etc/ldap.secret" should be able to handle newline in
/etc/ldap.secret because pam_ldap requires a newline.

How to reproduce:

0. Setup your system to use LDAP for authetication.
1. Create a user "foobar" in LDAP.
2. Stop nscd (just to be sure we query LDAP)

Version 1: pam_ldap works with newline in /etc/ldap.secret, but not ldapsearch

3. Make sure /etc/ldap.secret ends in a newline.
4. id foobar
5. ldapsearch -y /etc/ldap.secret ... (uid=foobar)... => 
ldap_bind: Invalid credentials (49)

Version 2: ldapsearch -y works with newline in /etc/ldap.secret, but not

6. Make sure /etc/ldap.secret does not end in a newline.
7. id foobar
id: foobar: No such user
8. ldapsearch -y /etc/ldap.secret ... (uid=foobar)... => 
(search result OK)