>>
>>
> Hop this is what you are asking for in php extensions:
>
... stripped irrelevant extensions ...
> LDAP Support => enabled
> RCS Version => $Id: ldap.c,v 1.130.2.13 2005/05/08 16:06:24 sniper Exp $
> Total Links => 0/unlimited
>
> API Version => 2004
> Vendor Name => OpenLDAP
> Vendor Version => 20122
...
mhash extension is missing. some salted passwords can't be changed.
> Here is an ldapsearch for a temp user name:
>
> SASL/CRAM-MD5 authentication started
> Please enter your password:
> SASL username: rjyates
> SASL SSF: 0
> # extended LDIF
> #
> # LDAPv3
> # base <> with scope sub
> # filter: (objectclass=*)
> # requesting: ALL
> #
>
> # search result
> search: 4
> result: 32 No such object
...
I don't see hash used for user password. User can't find own entry in
LDAP. If you use {CRYPT} passwords, leave first 5 hash symbols. They won't
disclose your password and only show used crypt format.
In your setup anonymous user must be able to find user's DN with
uid=username lookup. Then script must be able to log into LDAP with found
DN and IMAP password. Then script looks up user's entry one more time and
script must see userpassword field.
from config.php
$attr = array("userPassword","cn","sn","dc","uid");
could you lowercase userPassword string? use "userpassword" instead of
"userPassword".
--
Tomas
--
squirrelmail-users mailing list
Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines
List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx
List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user
List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995
List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
