[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt

To: Ludovic Poitou <ludovic.poitou@france.Sun.COM>
Subject: Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.Org>
Date: Thu, 23 Dec 1999 10:47:48 -0800
Cc: ietf-ldapext@netscape.com
In-reply-to: <386246EB.BB31ADD6@France.sun.com>
References: <199912221156.GAA05917@ietf.org> <3862393A.D3D8D79F@netscape.com>
Resent-date: Thu, 23 Dec 1999 10:46:41 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"6NyBPC.A.ZDH.A4mY4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

At 04:59 PM 12/23/99 +0100, Ludovic Poitou wrote:
>> 3) For transition purposes (for those who have deployed with one-way
>> hashed userPassword values), it would be nice to use the same format
>> with the new authPassword, i.e., {SCHEME}HASHED-VALUED
>
>Yes. And it would be nice to use the same identifiers (SHA instead of SHA1).

If I were to use RFC 2307 syntax, I would have left identifiers alone.

However, since I introduced a new syntax, the authPassword
schemes names and RFC 2307 schemas do not directly relate.
My SHA1 schema is more like SSHA than SHA as it supports an optional
seed.

>Would it be possible to have the same password hashed with different schemes ?

Yes.

>If so, how to deal with passwords modifications and deletion
>should be clarified.

Like userPassword, authPassword is a user attribute and hence
has no special behavior (except that defined per schema) in
respect to interrogation and update operations.

References:
- I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt
  - From: Internet-Drafts@ietf.org
- Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt
  - From: mcs@netscape.com (Mark C Smith)
- Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt
  - From: Ludovic Poitou <ludovic.poitou@france.Sun.COM>

Prev by Date: Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-00.txt
Next by Date: Re: LDAP C API -> Informational
Index(es):
- Chronological
- Thread