Does the Samba 4 LDAP server support GSS-SPNEGO over SASL
Henrik Nordstrom
hno at squid-cache.org
Sat Dec 9 22:47:51 GMT 2006
lör 2006-12-09 klockan 13:53 +1100 skrev Andrew Bartlett:
> We don't support the DIGEST-MD5 server side quite yet, I need to hook
> that in (query for the plaintext password in a sasl callback).
Minor security note: You don't really need the plaintext, the Digest
HHA1 hash for the user in the realm is sufficient and is what many
implementations use to avoid storing the plaintext password on the
server.
Regards
Henrik
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 307 bytes
Desc: Detta =?ISO-8859-1?Q?=E4r?= en digitalt signerad
meddelandedel
Url : http://lists.samba.org/archive/samba-technical/attachments/20061209/60aec527/attachment.bin
More information about the samba-technical
mailing list