|  | Commit message (Collapse) | Author | Age | Lines | 
|---|
| | 
| 
| 
| 
| 
| | We only support the openldap scheme for now, with users that are
posixAccounts. Moreover, as the plugin cannot be configured directly,
you must configure libldap correctly in /etc/openldap/ldap.conf | 
| | 
| 
| 
| | This backend authenticates users against pam. | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | Instead of always putting users passwords in XML files, allow site
admins to configure a different authentication method to integrate
authentication with other systems.
This doesn't add any authentication backends yet, merely the
scaffolding. Notably:
- Password checking and loading/removing from storage has been
  decoupled. A new auth_check_pass function is used to check passwords.
  It does check against the configured storage first, but will handle
  the authentication backends as well. The XML storage merely signals
  that a user's password should be checked using an authentication
  backend.
- If unknown-to-bitlbee users identify using an authentication backend,
  they are automatically registered.
- If an authentication backend is used, that fact is stored in the XML
  file, the password is not. Passwords are also stored unencrypted in
  this case, as the password used to encrypt them can change underneath
  us.
- configure and Makefile changes for the backend objects | 
| | 
| 
| 
| 
| | In a locked down bitlbee instance it is useful to disable the 'account
add' command. | 
| | |  | 
| |\ |  | 
| |/ |  | 
| | 
| 
| 
| 
| | misc@mandriva.org, bug #381. | 
| | 
| 
| 
| 
| 
| | argument checking to avoid ugly (even though harmless) segfaults. Also skip
any md5: prefix that may be present when checking hashes. | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| | for two weeks already with >30 active connections and not a single crash. | 
| | 
| 
| 
| 
| | specific interface before connecting to a remote host. | 
| | 
| 
| 
| 
| | just that little bit extra security. | 
| | 
| 
| 
| 
| | modifications. Also adding some missing g_free()s to conf.c. | 
| | 
| 
| 
| | ::ffff:style addresses.) | 
| | 
| 
| 
| 
| | *INSECURE* because users can just do /mode +o to become operator. | 
| | |  | 
|  |  |