Re: nslcd: passwords in clear text even if TLS is configured

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Arthur de Jong <arthur [at] arthurdejong.org>
To: Andrea Sighinolfi <andrea.sighinolfi [at] sitti.it>, nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: nslcd: passwords in clear text even if TLS is configured
Date: Sat, 05 Mar 2022 13:36:55 +0100

Hi Andrea,

Thanks for reporting this.

On Thu, 2022-03-03 at 12:39 +0100, Andrea Sighinolfi wrote:
> The problem is that if I monitor the packet with a packet sniffer
> (Wireshark), I can see a simple bindRequest with the user password in
> clear text is performed before starting to communicate with TLS.

Can you start nslcd manually as "nslcd -d" and report the
authentication part of the output? I would expect a
"ldap_start_tls_s()" line to be present in the output. Can you also
report the fist bit that dumps the config?

Kind regards,

-- 
-- arthur - arthur@arthurdejong.org - https://arthurdejong.org/ --

nslcd: passwords in clear text even if TLS is configured, Andrea Sighinolfi
- Re: nslcd: passwords in clear text even if TLS is configured, Arthur de Jong

Prev by Date: fatal error: opening dependency file
Next by Date: Re: nslcd: passwords in clear text even if TLS is configured
Previous by thread: nslcd: passwords in clear text even if TLS is configured
Next by thread: Re: nslcd: passwords in clear text even if TLS is configured