httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ken Nishimura <ken_nishim...@agilent.com>
Subject [users@httpd] Followup to [Bug 50028] (LDAP authentication with encrypted passwords)
Date Thu, 28 Mar 2013 21:33:10 GMT
Hi -

I've searched the archives and it looks like this was discussed back in 
2010 with a "WONTFIX".  I just wanted to make sure this is still the case.

Basically, using the mod_auth_ldap module, apart from using SSL (and 
associated overhead), is it still the case that there is no way to 
encrypt just the passing of username and password from the client 
(browser) back to the server?

As others have pointed out, SSL is a fallback, but with associated 
overhead.  Has this been fixed in later versions of Apache?

Thanks,

Ken

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message