[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: fedora and openldap
- To: openldap-technical@openldap.org
- Subject: Re: fedora and openldap
- From: harry.jede@arcor.de
- Date: Wed, 6 Apr 2011 09:02:24 +0200
- Content-disposition: inline
- Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=arcor.de; s=mail-in; t=1302073349; bh=Uk3DTarSuGTNJcsSXCr/fgifovnd62lXJ0Bb4uFn/AM=; h=From:To:Subject:Date:References:In-Reply-To:MIME-Version: Content-Type:Content-Transfer-Encoding:Message-Id; b=O13BrxsWv3pU174mm+1A3pFojrT3rHISw+9oE8cL3Pk65FLWWT+kjjcEcTicELp5m 7XOr112BA+xy5QvImgApC+/lBLRSgtzebU33GfGNbu3G30QDM9nDgIyhKmjAVAA7cw 8xbDfu/fxjq2pIGOWCCFFafVDtNHmeZvGgLix6nM=
- In-reply-to: <4D9B87A2.8040400@imppc.org>
- References: <4D9B87A2.8040400@imppc.org>
- User-agent: KMail/1.9.9
Judith Flo Gaya wrote:
> Hello,
>
> After some time dealing with ldap and fedora, I'm stuck with an
> strange behaviour.
> I can successfully change the password for a certain user using the
> ldappasswd command, after this change (either done by the manager of
> the ldap or the same user) I can successfully ssh to the machine
> using this password.
> In this moment if I do slapcat I can see a password with this form:
>
> e01ENX1pMjcvdjYyeEFvNmI4R212YUdQeDZ3PT0=
>
> Instead if I change the password using the password command, I can
> see passwords much longer than the above one, this is what I can see
> after changing the passwd.
> e2NyeXB0fSQxJER1VDNiMEtQJE1GNmQ5UGo4YXhSQXp0RW9VNDVUNDA=
You use different password hash algos:
sh-3.2$ echo e01ENX1pMjcvdjYyeEFvNmI4R212YUdQeDZ3PT0= |base64 -d
{MD5}i27/v62xAo6b8GmvaGPx6w==sh-3.2$
sh-3.2$ echo e2NyeXB0fSQxJER1VDNiMEtQJE1GNmQ5UGo4YXhSQXp0RW9VNDVUNDA= |base64 -d
{crypt}$1$DuT3b0KP$MF6d9Pj8axRAztEoU45T40sh-3.2$
Maybe you should change to {SSHA}.
--
Regards
Harry