[Date Prev][Date Next]
Re: LDAP bind with blank password
Pierangelo Masarati wrote...:
>> I just noticed that ldapd considers a bind where a bind DN is
>> supplied but where a blank password is given to be anonymous given
>> some kind of read permissions for anonymous. Is that how it is
>> supposed to work?
> A bind with a DN but with an empty password is equivalent to an
> anonymous bind, while a bind with a DN and with a wrong password is
> not; the latter, for obvious reasons, is rejected.
going farther, i'd say a bind with a DN that isn't in the DB without any
or with an arbitrary password (of course wrong/correct doesn't apply
here) is considerd to be anonymous bind.. at least for opwnldap1.2.X, i
think i remember there was a change with openldap2.0, but i'm not sure
about that now..