[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#5492) Ignore password longer than pwdMinLength specified in PPOLICY

To: openldap-its@OpenLDAP.org
Subject: (ITS#5492) Ignore password longer than pwdMinLength specified in PPOLICY
From: huynh.tuan@comcast.net
Date: Wed, 30 Apr 2008 23:53:08 GMT

Full_Name: Tuan Huynh
Version: 2.3.39
OS: Solaris
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (216.39.129.66)


My password is 10 characters long, however system allowed me to login as long as
I enter first 8 characters and it ignored the rest even if I enter garbage.  For
example:

my password is !thisIsATest!
when I login it'll accept password such as !thisIsA or !thisIsAdkdkdkdkdkdkdkdk

I used ppolicy and pwdMinLength is set at 8

Next by Date: Re: (ITS#5492) Ignore password longer than pwdMinLength specified in PPOLICY
Index(es):
- Chronological
- Thread