[Date Prev][Date Next] [Chronological] [Thread] [Top]

logging failed binds


I'm running OpenLDAP 2.2.23 for user authentication.
As I would like to see bruteforce attempts for user passwords I would
like OpenLDAP to log all failed binds (preferably without the entered,
incorrect, password).

I have found Software Enhancement issue 1809 in the ITS, where someone
sent in a patch to do this. The issue has the note 'addressed in
HEAD/re/21', it is unclear to me what this would mean. The issue is from
May 2002.

I have also looked in the manual, especially the parts for the config
file and commandline parameters for slapd, and have found no option to
enable this feature.

Can OpenLDAP be configured to log failed bind attempts and if yes, where
could I find info on how to enable it?

Erik Romijn