On Fri, Sep 26, 2008 at 09:51:13AM -0600, Michael Hafen wrote: > > i don't think so! can you imagine a password stored in plain in a modern > > and secure system? i think that the current code expect that the plain > > text used for comparaison will be encrypted by the server. > > I read somewhere recently that having the password in the plain is > actually part of the LDAP spec.
you *can* have a clear text passwd with something like that userPassword: {cleartext}boohISmySECRET an ldap administrator can assume it with an acl that make this attribute readable and writable only by the admin and the self object but i seen it only one (to provide a kind of poor SSO). regards marc _______________________________________________ Koha-devel mailing list Koha-devel@lists.koha.org http://lists.koha.org/mailman/listinfo/koha-devel