[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch -w "password" only check first 8 words ?



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/09/10 07:23, shyuejyh.tw wrote:
> yes , i use crypt to hash my password .. 
> so ..  the problem is crypt just hash first 8 words , right ?
>  
> and i just need change another hash function like md5 ?
>  
> thanks a lot for your help :-)
> 
> 

Yep, that's correct.

Zdenek

- -- 
Zdenek Styblik
Net/Linux admin
OS TurnovFree.net
email: stybla@turnovfree.net
jabber: stybla@jabber.turnovfree.net


> --- 10/6/9 (三),Zdenek Styblik <stybla@turnovfree.net> 寫道:
> 
> 
> 寄件者: Zdenek Styblik <stybla@turnovfree.net>
> 主旨: Re: ldapsearch -w "password" only check first 8 words ?
> 收件者: "shyuejyh.tw" <shyuejyh.tw@yahoo.com.tw>
> 日期: 2010年6月9日,三,下午1:05
> 
> 
> On 06/09/10 03:50, shyuejyh.tw wrote:
>> Hi Everyone:
>> i have a question , how can i change ldapsearch command to check password more than 8 words? 
> 
>> my openldap is 2.4.11 (Debian/Lenny)
> 
>> when i use freeradius 2.0.4 to authentication a account, 
>> my password is  12345678 , than i type 123456789 ,  Pass .....
> 
>> this is radius's log:
>> rlm_ldap: login attempt by "amo" with password "123456789"
>> rlm_ldap: user DN: uid=amo,dc=hello,dc=com
>> rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1
>> rlm_ldap: bind as uid=amo,dc=hello,dc=com/123456789
>> rlm_ldap: waiting for bind result ...
>> rlm_ldap: Bind was successful
>> rlm_ldap: user amo authenticated succesfully
>> ++[ldap] returns ok
> 
> 
>> than i try use  ldapsearch search a user (still use password 123456789)
> 
>> ldapsearch  -x -b "dc=hello,dc=com" -D "uid=amo,dc=hello,dc=com" -W -h localhost -LLL uid=jojo
>> Enter LDAP Password:
>> pass than find user information.
> 
>> dn: uid=jojo,dc=hello,dc=com
>> shadowLastChange: 123123
>> loginShell: /bin/csh
>> gidNumber: 102
>> homeDirectory: /home/jojo
>> uidNumber: 1002
> 
>> i guess ldapsearch command just check first 8 words, is this a bug or change something can fix it ?
> 
>> thanks a lot
> 
> 
> 
> 
> hello,
> 
> isn't it because you're using CRYPT for password hash?
> 
> Regards,
> Zdenek
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkwPJwoACgkQ8MreUbSH7ikPsgCgsvEjTOnwflV9Y4MkxuAJgAeN
l5kAoMOWTUhLWGP6kY26LA2zvZ4zeLkN
=nH2z
-----END PGP SIGNATURE-----