httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 45393] Apache returns 500 Error when no LDAP credentials are supplied
Date Mon, 14 Jul 2008 20:50:06 GMT

--- Comment #1 from Eric Covener <>  2008-07-14 13:50:06 PST ---
I went down this path for another PR (or issue raised on IRC) a few months ago.

The empty userid is permitted by HTTP basic auth, and some LDAP SDKs do support
the filter generated such as "attr=" with no value.  I believe I lost the heart
to try to change it when both openldap and Tivoli directory server supported
the syntax.

if you can find chapter and verse of the LDAP filter syntax that says it's
forbidden, mod_authnz_ldap would be able to short-circuit sending the DN search
-- otherwise we'd have to add some special-case MSSDK logic to do the same (to
prevent the 500, request still forbidden obviously)

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message