26 Sep
2008
26 Sep
'08
8:12 p.m.
On Fri, Sep 26, 2008 at 09:51:13AM -0600, Michael Hafen wrote:
i don't think so! can you imagine a password stored in plain in a modern and secure system? i think that the current code expect that the plain text used for comparaison will be encrypted by the server.
I read somewhere recently that having the password in the plain is actually part of the LDAP spec.
you *can* have a clear text passwd with something like that userPassword: {cleartext}boohISmySECRET an ldap administrator can assume it with an acl that make this attribute readable and writable only by the admin and the self object but i seen it only one (to provide a kind of poor SSO). regards marc