Re: python-ldap, Zope, and NDS

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Timothy Wilson wrote:
> 
> On Sun, 25 Jun 2000, Michael [iso-8859-1] Ströder wrote:
> 
> > > Python 1.5.2 (#0, Apr  3 2000, 14:46:48)  [GCC 2.95.2 20000313 (Debian
> > > GNU/Linux)] on linux2
> > > Copyright 1991-1995 Stichting Mathematisch Centrum, Amsterdam
> > > >>> import ldap
> > > >>> l = ldap.open("206.131.108.2",389)
> > > >>> l.simple_bind_s("ou=do,o=isd_197","")
> >                        ^^^^^^^^^^^^^^^^^^^
> > Please read the doc of ldapmodule again. The DN is meant for binding
> > as this object (e.g. an entry describing a user) and is used for
> > authentication/authorization. If doing a anonymous bind you can
> > simply use an empty DN.
> 
> Aha! Changing to l.simple_bind_s("", "") makes everything work fine

Well, LDAP hosts should assume anonymous bind if password is empty.
So it's a little bit of a NDS issue.

> (At
> least as far as my simple example goes.) I will go through the source for
> ZLDAP and try to determine how it's being done there.

If they put a bind-dn in a simple_bind() call although you did not
tell the module doing so it's definitely a bug in ZLDAP.

Ciao, Michael.