directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From elecha...@apache.org
Subject svn commit: r1574140 - /directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext
Date Tue, 04 Mar 2014 17:22:28 GMT
Author: elecharny
Date: Tue Mar  4 17:22:27 2014
New Revision: 1574140

URL: http://svn.apache.org/r1574140
Log:
Fixed some formating

Modified:
    directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext

Modified: directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext
URL: http://svn.apache.org/viewvc/directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext?rev=1574140&r1=1574139&r2=1574140&view=diff
==============================================================================
--- directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext (original)
+++ directory/site/trunk/content/apacheds/basic-ug/3.1-authentication-options.mdtext Tue Mar
 4 17:22:27 2014
@@ -136,7 +136,7 @@ In real life, you obviously want to sepa
 If passwords are stored in the directory in clear like above, the administrator (_uid=admin,ou=system_)
is able to read them. This holds true even if authorization is enabled. The passwords would
also be visible in exported LDIF files. This is often unacceptable.
 
 <DIV class="warning" markdown="1">
-Not only the administrator will be able to read your password, or be visible in LDIF files,
but if one does not use SSL, the the password is transmitted in clear text above the wire...
+Not only the administrator will be able to read your password, or be visible in LDIF files,
but if one does not use SSL, the password is transmitted in clear text above the wire...
 </DIV>
 
 ### Passwords not stored in clear text
@@ -208,7 +208,7 @@ Providing the hashed value of the _userP
 This is intended. If someone was able to catch this value (from an LDIF export for instance),
s/he must still provide the password itself in order to get authenticated.
 
 <DIV class="note" markdown="1">
-**Be Warned: Limited security added**
+<b>Be Warned: Limited security added</b>
 
 Please note that storing user passwords one-way encrypted only adds limited security. During
the bind operation, the credentials are still transmitted unencrypted, if no SSL/TLS communication
is used (thus you should definitely consider to do so). 
 



Mime
View raw message