[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: secure passwords

To: Buchan Milne <bgmilne@staff.telkomsa.net>
Subject: Re: secure passwords
From: Michael Ströder <michael@stroeder.com>
Date: Wed, 14 Sep 2011 16:54:17 +0200
Cc: openldap-technical@openldap.org
In-reply-to: <201109141200.55071.bgmilne@staff.telkomsa.net>
References: <CADKqS0ypJhSSJ_v9edCdehv=SkmTPRFJKtvkoAT9pR9bdFtTpA@mail.gmail.com> <201109141200.55071.bgmilne@staff.telkomsa.net>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:6.0.2) Gecko/20110902 Firefox/6.0.2 SeaMonkey/2.3.3

Buchan Milne wrote:
> IMHO, you shouldn't be hashing passwords on the client-side, it is much better 
> to let the DS hash the password

In some use-cases it is better to do client-side hashing. Especially if you
want to set more attributes together with attribute 'userPassword' in a single
modify request (which means single transaction).

Ciao, Michael.

Follow-Ups:
- Re: secure passwords
  - From: Simone Piccardi <piccardi@truelite.it>

References:
- secure passwords
  - From: sim123 <Sim3159@gmail.com>
- Re: secure passwords
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Re: secure passwords
Next by Date: How to disable cn=config module in OpenLDAP
Index(es):
- Chronological
- Thread