[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Experimenting with a password plugin

To: Quanah Gibson-Mount <quanah@symas.com>, openldap-technical@openldap.org
Subject: Re: Experimenting with a password plugin
From: dee heffem <dheffem@gmail.com>
Date: Wed, 17 Apr 2019 10:45:53 -0500
Content-language: en-US
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=SIMtfKWUqQFBLDvz9VFbD0eS++Be8JZXcquHSMc0kNo=; b=ohkrzkFSoLRa0zeTNJUHJJhCpIA+9y85PrnkLb8PMk3AYaRw7orVARIKLQGxEtDHlM 9GGdkLVVR4/HKyVNv3bk09cDlKTO1AxILcLDv1D/1stSeUMR+Zsz59f2B7CJ4ow8z5N+ dA0M1y5sAhwH+e7ExkOpjp4Jrwzr7OX8R9Gw8iuSBoTVOeLo1Qewz4MR96df+sj51DM9 QTQhKTxfXZpRNwvDXcVBVp/wdS/oH+uRSNHdndwFYLB961bIzW0ootr63eVb8jLWWTDD se8C37F8JlDZtIpAYqXKVvWEHlHD2mp3migM7tY/GzB1PEC034zsBnpccfbavsQJy5E6 xJ+g==
In-reply-to: <BBD1E36F88A630FB92B43367@[192.168.1.39]>
References: <011fc6df-bb4f-a821-7122-a9e8ea750205@gmail.com> <c8d09ffd-c6a6-f005-851e-558337fdbebd@stroeder.com> <875a6b7c-d533-a595-f179-d505cbdda80f@gmail.com> <7597ad21-c6b7-4a32-072e-35c0895fc063@symas.com> <57364aa1-809d-ca17-b95e-fc0de201baf9@gmail.com> <BBD1E36F88A630FB92B43367@[192.168.1.39]>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1

On 4/10/19 10:13 AM, Quanah Gibson-Mount wrote:
> 
> It should be done in a similar way as the OpenLDAP project:
> 
> a) A LICENSE file in the root of the repository
> b) A comment at the start of each file of code that states the following:

Thanks. I've added it to the repo and source files.
https://github.com/DFMCH/pw-duo

Most of what I needed to do I gleaned from the OpenLDAP sources. Not
sure about some of it. Some things I wonder about:

* Is ber_memalloc() the preferred way to allocate memory?
* call read_duo_keys() only once instead of every auth?
* some modules use ldap_pvt_thread_mutex_lock/unlock() and some don't.
What determines usage?
* Increasing wait time for MFA (deferring operation: binding)?

If anyone can offer feedback it would be appreciated.

References:
- Re: Experimenting with a password plugin
  - From: dee heffem <dheffem@gmail.com>
- Re: Experimenting with a password plugin
  - From: Howard Chu <hyc@symas.com>
- Re: Experimenting with a password plugin
  - From: dee heffem <dheffem@gmail.com>
- Re: Experimenting with a password plugin
  - From: Quanah Gibson-Mount <quanah@symas.com>

Prev by Date: Re: Strange slapadd behavior
Next by Date: Is there any directory server in public use?
Index(es):
- Chronological
- Thread