Re: blocking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

We have just migrated from openldap to fedora, and have realized with horror that some authentication clients (for example CAS) are giving the OK to users who submit un empty password string.
We have been going slowly mad trying to find how to block this in the configuration.
FDS only cares about the bind method when evaluating access control to data. When only using the external bind interface, AFAIK there is currently no way to disable anonymous binds from succeeding with FDS.
One could write a pre authentication plugin which, when enabled, would prevent anonymous binds from succeeding and send the unwilling to perform back to the client. 


BR,
--
mike

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux