Hello, I'm running OpenLDAP 2.2.23 for user authentication. As I would like to see bruteforce attempts for user passwords I would like OpenLDAP to log all failed binds (preferably without the entered, incorrect, password).
I have found Software Enhancement issue 1809 in the ITS, where someone sent in a patch to do this. The issue has the note 'addressed in HEAD/re/21', it is unclear to me what this would mean. The issue is from May 2002. I have also looked in the manual, especially the parts for the config file and commandline parameters for slapd, and have found no option to enable this feature. Can OpenLDAP be configured to log failed bind attempts and if yes, where could I find info on how to enable it? greets, Erik Romijn
