[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Antw: Re: Max length allowed for a password

To: "Rob Tanner" <rtanner@linfield.edu>, <openldap-technical@openldap.org>, "Howard Chu" <hyc@symas.com>
Subject: Re: Antw: Re: Max length allowed for a password
From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>
Date: Fri, 13 Dec 2013 09:12:45 +0100
Content-disposition: inline
In-reply-to: <52AABCE1.4060805@symas.com>
References: <1014D25C-C994-46EB-B41A-F2EFD99C1805@linfield.edu> <52A62C26.8080501@symas.com> <52AAC2B5020000A100013808@gwsmtp1.uni-regensburg.de> <52AABCE1.4060805@symas.com>

>>> Howard Chu <hyc@symas.com> schrieb am 13.12.2013 um 08:53 in Nachricht
<52AABCE1.4060805@symas.com>:
> Ulrich Windl wrote:
>>>>> Howard Chu <hyc@symas.com> schrieb am 09.12.2013 um 21:46 in Nachricht
>> <52A62C26.8080501@symas.com>:
>>> Rob Tanner wrote:
>>>> Hi,
>>>>
>>>> We are looking at extending the allowed length of passwords we allow people
>>
>>> to
>>>> use (the theory being that a short phrase is easier to remember than a
>>>> shorter, but arbitrary string of characters).  But since we use our ldap
>>>> server for authentication to a whole host of online tools, including
>> several
>>>> portals, I need to know the max length of the source password when doing a
>>
>>> bind.
>>>
>>> There are no maximum lengths in LDAP. Limits imposed by other applications
>>> depend on the particular application.
>>
>> Right, but what about typical input buffer lengths in the openLDAP tools 
> (like
>> ldapsearch)?
> 
> Part of the point of the open source movement is to allow end users to read 
> the source and see what the code they use actually does. This is a 
> cornerstone 
> of free software, and a key distinction between it and proprietary software. 

Excellent answer: "man slapd"
---
NAME
       slapd - Use the source, Luke!

SYNOPSIS
       Use the source, Luke!

DESCRIPTION
       Use the source, Luke!

OPTIONS
       Use the source, Luke!

SEE ALSO
       Use the source, Luke!

BUGS
       Use the source, Luke!

ACKNOWLEDGEMENTS
       Use the source, Luke!
---

;-)


> 
> Learn to exercise this freedom.
> 
> Since LDAP imposes no limits on the maximum length of a password, it would 
> be 
> moronic for OpenLDAP software to impose limits of its own; that would 
> prevent 
> the tools from working with all possible LDAP servers. You can either trust 
> that we are not morons, or distrust that and use something else instead, or 
> read the source and see for yourself. Whatever choice, your question was a 
> waste of time.
> 
> -- 
>    -- Howard Chu
>    CTO, Symas Corp.           http://www.symas.com 
>    Director, Highland Sun     http://highlandsun.com/hyc/ 
>    Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- Max length allowed for a password
  - From: Rob Tanner <rtanner@linfield.edu>
- Re: Max length allowed for a password
  - From: Howard Chu <hyc@symas.com>
- Antw: Re: Max length allowed for a password
  - From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>
- Re: Antw: Re: Max length allowed for a password
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Antw: Re: Max length allowed for a password
Next by Date: Re: Antw: Re: Max length allowed for a password
Index(es):
- Chronological
- Thread