11 Aug
2009
11 Aug
'09
12:39 p.m.
michael@stroeder.com wrote:
Full_Name: Michael Ströder Version: HEAD OS: openSUSE Linux 11.1 URL: Submission from: (NULL) (84.163.50.194)
If one trys to set the userPassword with a Password Modify ext. op. request but the object classes of the entry does not allow userPassword slapd could add automagically AUXILIARY object class simpleSecurityObject to the entry.
(I'm doing this in web2ldap since years when changing the userPassword with a normal modify operation which client-side hashing.)
This request sounds like a mistake to me. The DSA is supposed to enforce the data model, not automagically enable you to bypass the model. What clients do is a completely separate matter...
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
5576
Age (days ago)
5576
Last active (days ago)
0 comments
1 participants
participants (1)
-
hyc@symas.com