[rabbitmq-discuss] Creating an auth plugin (Kerberos)
Simon Lundström
simlu at su.se
Wed Nov 28 10:53:38 GMT 2012
On Wed, 2012-11-28 at 10:35:21 +0000, Simon MacMullen wrote:
> When running 3.x you could just reject all passwordless auth
> requests. Any federation / shovel local connections would have to be
> to a user supplied by another auth backend, e.g. the internal one.
> Since there's usually only one such user anyway that shouldn't be
> too big a deal.
>
> But with 2.x you would reject all mgmt/stomp connections as well.
> Another reason to upgrade...
I see, I'll reject all requests when password in undefined and make a
note of this in the README.
Many thanks again!
- Simon
More information about the rabbitmq-discuss
mailing list