[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Possible to have blank passwords?

To: Luke Howard <lukeh@xedoc.com.au>
Subject: Re: Possible to have blank passwords?
From: Mark Smith <mcs@netscape.com>
Date: Thu, 17 Jun 1999 16:34:18 -0400
Cc: kevin_myer@elanco.k12.pa.us, openldap-general@OpenLDAP.org
Organization: Netscape Communications
References: <199906171233.WAA08156@alpha.xedoc.com.au>

Luke Howard wrote:
> 
> userPassword: {crypt}
> 
> should do it. I'm not sure what the deal is with OpenLDAP regarding
> this, but I know that ypldapd doesn't handle this properly. :-)
> 
> -- Luke

One problem is the RFC 2251 says that a zero-length password sent in an
LDAP bind request should mean "anonymous auth."  I am not sure what to
do for those people who want zero-length passwords to mean "let me in
without a password" (the UNIX tradition).  I assume ypldapd does an LDAP
compare operation or retrieves the userPassword and does the password
check itself or ?

-- 
Mark Smith
Directory Architect / Sun-Netscape Alliance
My words are my own, not my employer's.  Got LDAP?

References:
- Re: Possible to have blank passwords?
  - From: Luke Howard <lukeh@xedoc.com.au>

Prev by Date: Re: General LDAP/OpenLDap Questions
Next by Date: encrypt attributes
Index(es):
- Chronological
- Thread