for revision 86

John Morrissey

2009-11-20 11:23:06

Revision ID: jwm@horde.net-20091120162306-l41l3com55hn35gd

thanks to Bug 2922 (Auth API allows one auth module to authenticate user
data provided by a different auth module), we don't need to worry about
passing a locked crypted password ("*") to pr_auth_check(), since our authz
handler will only be called if we supplied the original user information.

as a result, if the UserPassword directive is in effect, we need to avoid
doing auth binds and fall through to verifying the crypted password
ourselves instead of declining the authz request and letting mod_auth_unix
handle it.

bump the required proftpd version to 1.3.1rc3, since #2922 was resolved in
that version. this seems reasonable, since nobody ought to be running
1.2.10rc2 any more and 1.3.1rc3 has been available for almost 2.5y now.

Filename	Latest Rev	Last Changed	Size
.bzrignore	69	2009-09-09 09:03:12	30
CHANGES	83	2009-11-20 10:02:01	18.5K
group-ldif	63	2009-06-20 10:11:43	156
mod_ldap.c	86	2009-11-20 11:23:06	67.1K
mod_ldap.conf	63	2009-06-20 10:11:43	172
README	83	2009-11-20 10:02:01	3.6K
rfc2307.txt	1	2006-12-10 16:35:36	40.4K
user-ldif	63	2009-06-20 10:11:43	183

Loggerhead 1.17 is a web-based interface for Bazaar branches