[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Double colon in LDIF

To: openldap-software@OpenLDAP.org
Subject: Re: Double colon in LDIF
From: Todd Lyons <tlyons@ivenue.com>
Date: Tue, 8 Mar 2005 09:50:41 -0800
Content-disposition: inline
In-reply-to: <1110280832.9899.53.camel@localhost.localdomain>
Organization: Ivenue.com
References: <1110280832.9899.53.camel@localhost.localdomain>
User-agent: Mutt/1.5.6i

rob fielding wanted us to know:

>I'm still finding my feet in LDAP and LDIFs but I've been led to think
>entries such as these were 'corruptions' :

Others have already mentioned that it is simply base64 encoded.  The
easiest way to see what's really in there is a good old commandline
utility:

>cisSetting:: Ym0ubmV3QGRl

[todd@tlyons ~]$ echo "Ym0ubmV3QGRl" | mimencode -u ; echo
bm.new@de

>dn:: AGNuPWRzdnIwMDAwLG91PUF

[todd@tlyons ~]$ echo "AGNuPWRzdnIwMDAwLG91PUF" | mimencode -u ; echo
Warning: base64 decoder saw premature EOF!
cn=dsvr0000,ou

That actually looks like some kind of error, but not sure where.

>Things to note: *all* userPassword entries are double colon entries in
>the LDIF - they are infact plaintext at this point, visible in gq. Not

Normal.

>Can someone clarify whether the above is 'normal' or not? I'm begining

As others have said, yes.

-- 
Regards...		Todd
They that can give up essential liberty to obtain a little temporary 
safety deserve neither liberty nor safety.       --Benjamin Franklin
Linux kernel 2.6.8.1-12mdkenterprise   1 user,  load average: 0.02, 0.04, 0.04

References:
- Double colon in LDIF
  - From: rob fielding <rob@dsvr.net>

Prev by Date: Re: Double colon in LDIF
Next by Date: Re: Double colon in LDIF
Index(es):
- Chronological
- Thread