[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: ldapsearch -w "password" only check first 8 words ?
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 06/09/10 07:23, shyuejyh.tw wrote:
> yes , i use crypt to hash my password ..
> so .. the problem is crypt just hash first 8 words , right ?
>
> and i just need change another hash function like md5 ?
>
> thanks a lot for your help :-)
>
>
Yep, that's correct.
Zdenek
- --
Zdenek Styblik
Net/Linux admin
OS TurnovFree.net
email: stybla@turnovfree.net
jabber: stybla@jabber.turnovfree.net
> --- 10/6/9 (三),Zdenek Styblik <stybla@turnovfree.net> 寫道:
>
>
> 寄件者: Zdenek Styblik <stybla@turnovfree.net>
> 主旨: Re: ldapsearch -w "password" only check first 8 words ?
> 收件者: "shyuejyh.tw" <shyuejyh.tw@yahoo.com.tw>
> 日期: 2010年6月9日,三,下午1:05
>
>
> On 06/09/10 03:50, shyuejyh.tw wrote:
>> Hi Everyone:
>> i have a question , how can i change ldapsearch command to check password more than 8 words?
>
>> my openldap is 2.4.11 (Debian/Lenny)
>
>> when i use freeradius 2.0.4 to authentication a account,
>> my password is 12345678 , than i type 123456789 , Pass .....
>
>> this is radius's log:
>> rlm_ldap: login attempt by "amo" with password "123456789"
>> rlm_ldap: user DN: uid=amo,dc=hello,dc=com
>> rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1
>> rlm_ldap: bind as uid=amo,dc=hello,dc=com/123456789
>> rlm_ldap: waiting for bind result ...
>> rlm_ldap: Bind was successful
>> rlm_ldap: user amo authenticated succesfully
>> ++[ldap] returns ok
>
>
>> than i try use ldapsearch search a user (still use password 123456789)
>
>> ldapsearch -x -b "dc=hello,dc=com" -D "uid=amo,dc=hello,dc=com" -W -h localhost -LLL uid=jojo
>> Enter LDAP Password:
>> pass than find user information.
>
>> dn: uid=jojo,dc=hello,dc=com
>> shadowLastChange: 123123
>> loginShell: /bin/csh
>> gidNumber: 102
>> homeDirectory: /home/jojo
>> uidNumber: 1002
>
>> i guess ldapsearch command just check first 8 words, is this a bug or change something can fix it ?
>
>> thanks a lot
>
>
>
>
> hello,
>
> isn't it because you're using CRYPT for password hash?
>
> Regards,
> Zdenek
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkwPJwoACgkQ8MreUbSH7ikPsgCgsvEjTOnwflV9Y4MkxuAJgAeN
l5kAoMOWTUhLWGP6kY26LA2zvZ4zeLkN
=nH2z
-----END PGP SIGNATURE-----