Re: How to avoid plain password in mod_ldap

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: How to avoid plain password in mod_ldap
From: "Gillis J. de Nijs" <gillis@xxxxxxxxxxxxxxxxxxxx>
Date: Wed, 12 Sep 2018 15:27:14 +0200
In-reply-to: <DM3PR17MB066716AB45586E031964A612B61B0@DM3PR17MB0667.namprd17.prod.outlook.com>
Reply-to: users@xxxxxxxxxxxxxxxx

The documentation states that you can use an executable to return the password. Since the password is read on server startup, you could make that script owned by root and give it rx permissions for root only. That should make sure no one (except root) can read your password.

https://httpd.apache.org/docs/2.4/mod/mod_authnz_ldap.html#authldapbindpassword

On Wed, Sep 12, 2018 at 2:00 PM, Rathore, Rajendra <rarathore@xxxxxxx> wrote:

There are a plain password store in mod_ldap. Is there any way to encrypt the password?

Like: AuthLDAPBindPassword password

Thanks and Regards,

Rajendra Rathore

9922701491

References:
- How to avoid plain password in mod_ldap
  - From: Rathore, Rajendra

Prev by Date: How to avoid plain password in mod_ldap
Next by Date: Re: Re: Non Blocking write in apache
Previous by thread: How to avoid plain password in mod_ldap
Next by thread: How to auto-select SSL certificate by hostname
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]