Status: New Owner: ---- Labels: Type-Defect Priority-Medium New issue 735 by sztanyoo: Login to LDAP with arbitrary password http://code.google.com/p/openmeetings/issues/detail?id=735
Which version of OpenMeetings are you running? 0.8.RC3 What's your operating system on client and server side? server: Debian lenny, LDAP server: OpenLDAP (does not require authentication for queries (user authentication works for webpages from apache)) Is it a problem related to the client/usability or server-side? server-side LDAP authentication checks only checks whether the given username (uid) exists, and doesn't care the given password. (I made tcpdump captures also, there is only a search for the given uid, and there's nothing like authenticating) So I can log in with any username that exists in LDAP with arbitrary password. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OpenMeetings developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/openmeetings-dev?hl=en -~----------~----~----~----~------~----~------~--~---
