httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 31898] - Potential crash in util_ldap_cache_checkuserid
Date Wed, 03 Nov 2004 15:30:57 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=31898>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=31898

Potential crash in util_ldap_cache_checkuserid





------- Additional Comments From jah@progress.com  2004-11-03 15:30 -------
I attached a version of util_ldap_cache_getuserdn() for Apache 2.0.52 util_ldap.c.

I made some more changes to the cache logic, continuing your idea of not
removing the cache entry unless we really need to. This should be more efficient
in practice since we only need to remove existing cache entries if the LDAP
account changes between authentications. Note that util_ldap_cache_getuserdn()
will remove expired cache entries with passwords since it doesn't re-validate
the password.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message