New subject: [Issue 9615] ppolicy pwcheck module should be a configuration setting

25 Jul 2021


      https://bugs.openldap.org/show_bug.cgi?id=9615
Issue ID: 9615
           Summary: ppolicy pwcheck module should be a configuration
                    setting
           Product: OpenLDAP
           Version: 2.5.5
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Severity: normal
          Priority: ---
         Component: overlays
          Assignee: bugs@openldap.org
          Reporter: quanah@openldap.org
  Target Milestone: ---
With the current implementation, the external pwcheck module for ppolicy is dl
opened every time a given password policy is checked during a password modify
operation.  This appears to be problematic because eventually systems start
reporting:
check_password_quality: lt_dlopen failed: (ppm.so) file not found."
There's really zero reason for this functionality to be implemented this way.
Instead, an external password policy check module should be defined as a
password policy config item, and then whether or not to use it remains a part
of a given policy.  This means the external module will only need to be opened
a single time.
-- 
You are receiving this mail because:
You are on the CC list for the issue.

[Issue 9615] New: ppolicy pwcheck module should be a configuration setting