Full_Name: Kurt Zeilenga Version: HEAD, 2.3, 2.2 OS: FreeBSD URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (24.205.218.53) slapd(8) is not properly checking oldPasswords. That is, the operation: ldappasswd -x -D "cn=User,dc=example,dc=com" -w "secret" -a "old" -s "new" should fail as old != secret. In HEAD (and likely both re22/23), this succeeds!