[389-devel] Please review: [Bug 476925] Admin Server: Do not allow 8-bit passwords for the admin user
Noriko Hosoi
nhosoi at redhat.com
Wed Mar 9 19:26:39 UTC 2011
https://bugzilla.redhat.com/show_bug.cgi?id=476925
Admin Server:
https://bugzilla.redhat.com/attachment.cgi?id=483289&action=diff
https://bugzilla.redhat.com/attachment.cgi?id=483289&action=edit
Description: Due to the following reasons, password of the admin
user is not supposed to include 8-bit characters.
1) Admin Console | Configure | Access does not take 8-bit password.
If such characters are entered, the characters are dropped.
(e.g., if "députés" is entered, the password will be "dputs".
2) Character encoding of Admin Express's login window depends on
browsers' implementation. And the server has no way to get
the character encoding information.
Despite of it, setup-ds-admin.pl accepts 8-bit admin user password.
This patch changes the behavior and rejects it.
389-admin-console:
https://bugzilla.redhat.com/attachment.cgi?id=483290&action=diff
https://bugzilla.redhat.com/attachment.cgi?id=483290&action=edit
Description: Admin Console | Configure | Access panel had dropped
User name text box some time back. The help page was not updated
to reflect the change. Plus, adding a note about the behavior
to handle passwords containing 8-bit characters.
More information about the 389-devel
mailing list