[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Newbie question: setting userPassword field

To: Dan <dan@fatcanary.com.au>
Subject: RE: Newbie question: setting userPassword field
From: Dustin Sallings <dustin@spy.net>
Date: Mon, 7 Feb 2000 19:59:18 -0800 (PST)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <NDBBJHPHJMPNFPEJOKGOOEICCAAA.dan@fatcanary.com.au>

On Tue, 8 Feb 2000, Dan wrote:

	Use ldappasswd to set a password on a DN, then look at that, then
try to make others look like that.  You don't want the binary version of
that hash.

# Date: Tue, 8 Feb 2000 14:15:12 +1030
# From: Dan <dan@fatcanary.com.au>
# To: openldap-software@OpenLDAP.org
# Subject: RE: Newbie question: setting userPassword field
# 
# Next question (no, I'm not going to ask for every step of the process!
# <grin>):
# 
# I thought I'd test out the hashing function by playing with the rootpw field
# in slapd.conf, before adding user entries.
# 
# Using the SHA hashing function in Java, I converted the password "hello"
# into the string ¬(¦?_+Fó++¦¤;H,+«¬CM (hmm, it loses something in the
# translation :).  Now, I assumed that I could simply change the rootpw from
# its current default plaintext password to {SHA}¬(¦?_+Fó++¦¤;H,+«¬CM.
# 
# My ldap.conf file now looks like this:
# 
# ...
# #######################################################################
# # ldbm database definitions
# #######################################################################
# 
# database        ldbm
# suffix          "o=fatcanary, c=AU"
# directory       /usr/local/ldap/data
# rootdn          "dn=dan, o=fatcanary, c=AU"
# rootpw          {SHA}^j^t^F^\^E^h^b^Z^~^^;H,^Y^n^iCM
# 
# ...
# 
# Next, I tried to bind to the server using Jerry Gawor's Java-based LDAP
# browser program (available from http://www.iit.edu/~gawojar/ldap).  When the
# rootpw field is set simply as "secret", I can log in (I assume this is done
# by "binding") and manipulate the directory structure.  However now it won't
# authenticate me.  Maybe I've done something stupid here, but just in case, I
# set the log level to 4095 to record the goings on of the server (log
# attached).
# 
# Can anybody help?
# 
# TIA,
# D.
# 
# 
# 
# Dan Makovec
# e-mail  dan@fatcanary.com.au <mailto:dan@fatcanary.com.au>
# ICQ     1398090
# Every day is a gift, that's why the present is so named
# 

--
dustin sallings                            The world is watching America,
http://2852210114/~dustin/                 and America is watching TV.

References:
- RE: Newbie question: setting userPassword field
  - From: "Dan" <dan@fatcanary.com.au>

Prev by Date: Re: searching on a DN
Next by Date: linux md5 password --> openldap?
Index(es):
- Chronological
- Thread