From b166736dbf04c9397b810dcbec7f4e6e420f5db8 Mon Sep 17 00:00:00 2001
From: Kurt Zeilenga <kurt@openldap.org>
Date: Thu, 22 May 2003 16:21:14 +0000
Subject: [PATCH] Don't use default binddn when password is empty

---
 libraries/libldap/sasl.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libraries/libldap/sasl.c b/libraries/libldap/sasl.c
index 1601354cad..28802c868f 100644
--- a/libraries/libldap/sasl.c
+++ b/libraries/libldap/sasl.c
@@ -77,7 +77,7 @@ ldap_sasl_bind(
 	if( rc != LDAP_SUCCESS ) return rc;
 
 	if( mechanism == LDAP_SASL_SIMPLE ) {
-		if( dn == NULL && cred != NULL ) {
+		if( dn == NULL && cred != NULL && cred->bv_len ) {
 			/* use default binddn */
 			dn = ld->ld_defbinddn;
 		}
-- 
2.39.5