[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-tracker] [bug #22811] bad id2name in accounts_ldap causes
From: |
Dave Hall |
Subject: |
[Phpgroupware-tracker] [bug #22811] bad id2name in accounts_ldap causes bad group memberships |
Date: |
Wed, 02 Apr 2008 11:18:01 +0000 |
User-agent: |
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9b4) Gecko/2008031317 Firefox/3.0b4 |
Follow-up Comment #1, bug #22811 (project phpgroupware):
It should be using id2lid, not id2name which returns the cn. It is basic
security that in general other users shouldn't be shown the login ids of other
users in potentially hostile environments.
I the resight tree a lot of this stuff has already changed. I think there
should be a discussion on the dev list about if this should be fixed now in
the phpgw trunk or wait for a sync from resight.
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?22811>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/