[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: sasl - cmusaslsecretDIGEST-MD5 - encrypted passwords in ldap

To: openldap-software@OpenLDAP.org
Subject: Re: sasl - cmusaslsecretDIGEST-MD5 - encrypted passwords in ldap
From: pkoelle <paul@subsignal.org>
Date: Tue, 29 Jun 2004 23:50:40 +0200
In-reply-to: <40DFEA5C.3010502@gvcc.net>
References: <40DFEA5C.3010502@gvcc.net>
User-agent: Mozilla Thunderbird 0.7 (X11/20040615)

Heinz Hoelzl wrote:

hi
i try to store md5 encryted passwords in ldap using the objectclass cmuSaslUser. slapd searches the attribute cmusaslsecretDIGEST-MD5, but the bind fails. what is the syntax for the hash stored in the cmusaslsecretDIGEST-MD5 attribute of the objectClass cmuSaslUser?

If I recall correctly from my SASL/postfix experiments, it has to be cleartext. As the challenge-response tokens are derived from the password, both client and server need it (or am I totally off here?). As a sidenote, can you confirm that on SASL binds the client always asks for cmusaslsecret<MECH>?

thanks Paul

References:
- sasl - cmusaslsecretDIGEST-MD5 - encrypted passwords in ldap
  - From: Heinz Hoelzl <heinz.hoelzl@gvcc.net>

Prev by Date: Help with 2.2.13 install on Debian
Next by Date: Re: Help with 2.2.13 install on Debian
Index(es):
- Chronological
- Thread