[rt-users] LDAP Authentication, Redux

John Gedeon jgedeon at qualcomm.com
Mon Dec 2 19:36:44 EST 2002 

Only problem with basic auth, to my knowledge, is that anyone with a 
sniffer watching long enough will be able to grab passwords since with 
basic auth they are sent as plain text.

John

At 02:56 PM 12/2/2002, Christian Gilmore wrote:
>I think what you're missing is enabling $WebExternalAuth in the config.pm
>and then having apache perform basic auth with the LDAP backend via such
>modules as Apache::AuthenLDAP and Apache::AuthzLDAP (I'd toss
>Apache::AuthenCache and Apache::AuthzCache around them, though).
>
>Thanks,
>Christian
>
>-----------------
>Christian Gilmore
>Technology Leader
>GeT WW Global Applications Development
>IBM Software Group
>
>
> > -----Original Message-----
> > From: rt-users-admin at lists.fsck.com
> > [mailto:rt-users-admin at lists.fsck.com]On Behalf Of Derek J. Balling
> > Sent: Monday, December 02, 2002 3:36 PM
> > To: Rt-Users
> > Subject: Re: [rt-users] LDAP Authentication, Redux
> >
> >
> > [bruce, sorry about the two copies, meant to send to the list]
> >
> > On Monday, December 2, 2002, at 04:24  PM, Bruce Campbell wrote:
> > > http://www.fsck.com/pub/contrib/2.0/external-users.README
> > > http://www.fsck.com/pub/contrib/2.0/external-users.tar.gz
> > >
> > > I don't think this is in RT/FM though (so you've got an out ;) )
> >
> > Maybe I'm dense.
> >
> > I don't see where that actually AUTH's a web user against it. (e.g.,
> > nowhere in that code is there any mention of a password, so when
> > someone goes to the web interface and enters in a username and
> > password, how does that userid/password get compared against the LDAP
> > server?)
> >
> > D
> >
> > _______________________________________________
> > rt-users mailing list
> > rt-users at lists.fsck.com
> > http://lists.fsck.com/mailman/listinfo/rt-users
> >
> > Have you read the FAQ? The RT FAQ Manager lives at
>http://fsck.com/rtfm
>
>_______________________________________________
>rt-users mailing list
>rt-users at lists.fsck.com
>http://lists.fsck.com/mailman/listinfo/rt-users
>
>Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm


--
<>< Proverbs 3:5 "Trust in the Lord with all your heart and lean not on 
your own understanding;"

More information about the rt-users mailing list