Actions
Bug #233
closedauthentication always succeeds with empty password
Start date:
05/08/2001
Due date:
% Done:
0%
Estimated time:
Bugzilla-Id:
233
Description
If logging into metacat, providing an empty string for a password always results
in successful authentication. This is a bug and security hole.
Updated by Jivka Bojilova over 23 years ago
Fixed from Metacat
Ldap server seems to always allow access with empty password strings
Actions