[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: 2.0.4: inserting password

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: 2.0.4: inserting password
From: Jaron Omega <jaron@nethere.net>
Date: Tue, 3 Oct 2000 18:20:28 -0700 (PDT)
Cc: Jie Gao <J.Gao@isu.usyd.edu.au>, openldap-software@OpenLDAP.org
In-reply-to: <5.0.0.25.0.20001003151406.00a45690@router.boolean.net>

On Tue, 3 Oct 2000, Kurt D. Zeilenga wrote:

>At 09:01 AM 10/4/00 +1100, Jie Gao wrote:
>>Hi All,
>>
>>I have been trying to run a batch job to populate the database using
>>perl-ldap. This includes inserting passwords, straight from a password
>>file, along with other data.
>>
>>This is an example of what I used:
>>
>>            userPassword        =>      '{crypt}testtest',
>>
>>But the search result shows something like:
>>
>>    userPassword:: e2NyeXB0fXRlc3R0ZXN0
>>
>>'{crypt}'is not there anymore. This used to work with v1.2.
>
>Note the double colon.  This means the value is base64 encoded.
>
>  perl <<EOF
>  use MIME::Base64;
>  print "userPasswd=\"" . decode_base64('e2NyeXB0fXRlc3R0ZXN0') . "\"\n";
>  EOF
>  userPasswd="{crypt}testtest"

Shouldn't that be {SHA}testtest?
I haven't tried submitting a string "{crypt style}password" to
the ldap server, will that have the server use the submitted crypt
style to encrypt 'testtest' aside from the default that the server
was set too?

Or am I confused,, I see Base64 which is a process for SHA hash comparison,
and I see 'crypt', which can be done with regular crypt(2).

I'm tired bleh,,,

Jaron Omega

References:
- Re: 2.0.4: inserting password
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: ACL's for SASL compat.
Next by Date: authentication
Index(es):
- Chronological
- Thread