[Koha-devel] Koha3.0 against Active Directory
Marc Chantreux
marc.chantreux at biblibre.com
Fri Sep 26 20:12:20 CEST 2008
On Fri, Sep 26, 2008 at 09:51:13AM -0600, Michael Hafen wrote:
> > i don't think so! can you imagine a password stored in plain in a modern
> > and secure system? i think that the current code expect that the plain
> > text used for comparaison will be encrypted by the server.
>
> I read somewhere recently that having the password in the plain is
> actually part of the LDAP spec.
you *can* have a clear text passwd with something like that
userPassword: {cleartext}boohISmySECRET
an ldap administrator can assume it with an acl that make this attribute
readable and writable only by the admin and the self object but i seen
it only one (to provide a kind of poor SSO).
regards
marc
More information about the Koha-devel
mailing list