On Fri, Sep 26, 2008 at 09:51:13AM -0600, Michael Hafen wrote:
> > i don't think so! can you imagine a password stored in plain in a modern
> > and secure system? i think that the current code expect that the plain
> > text used for comparaison will be encrypted by the server.
>
> I read somewhere recently that having the password in the plain is
> actually part of the LDAP spec.
you *can* have a clear text passwd with something like that
userPassword: {cleartext}boohISmySECRET
an ldap administrator can assume it with an acl that make this attribute
readable and writable only by the admin and the self object but i seen
it only one (to provide a kind of poor SSO).
regards
marc
_______________________________________________
Koha-devel mailing list
Koha-devel@lists.koha.org
http://lists.koha.org/mailman/listinfo/koha-devel
