Bug #233
authentication always succeeds with empty password
Start date:
05/08/2001
Due date:
% Done:
0%
Estimated time:
Bugzilla-Id:
233
Description
If logging into metacat, providing an empty string for a password always results
in successful authentication. This is a bug and security hole.
History
#1 Updated by Jivka Bojilova over 19 years ago
Fixed from Metacat
Ldap server seems to always allow access with empty password strings
#2 Updated by Jivka Bojilova over 19 years ago
FIXED
#3 Updated by Redmine Admin over 7 years ago
Original Bugzilla ID was 233