Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-1259

Make the userPassword not searchable from the outside

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • 1.5.4
    • None
    • aci, config
    • None

    Description

      The userPassword attribute should not be searchable by default. More specifically, it should not be a part of any filter, as it may be a security breach (imagine you use something like (&(cn=foo)(userPassword > a)(userPassword < c)), you can easily find the password in a very simple way...)

      Attachments

        Issue Links

          is a clone of

          Improvement - An improvement or enhancement to an existing feature or task. DIRSERVER-997 Block search ability for userPassword attribute

          • Major - Major loss of function.
          • Reopened

          Activity

            People

              Unassigned Unassigned
              elecharny Emmanuel Lécharny
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: