[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: secure passwords

To: sim123 <Sim3159@gmail.com>
Subject: Re: secure passwords
From: Michael Ströder <michael@stroeder.com>
Date: Wed, 14 Sep 2011 19:12:19 +0200
Cc: openldap-technical@openldap.org
In-reply-to: <CADKqS0zVmhVQSotLQL_szZU0-OT2fD441XBAUDSjsDzoT95fqw@mail.gmail.com>
References: <CADKqS0ypJhSSJ_v9edCdehv=SkmTPRFJKtvkoAT9pR9bdFtTpA@mail.gmail.com> <201109141200.55071.bgmilne@staff.telkomsa.net> <CADKqS0zVmhVQSotLQL_szZU0-OT2fD441XBAUDSjsDzoT95fqw@mail.gmail.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:6.0.2) Gecko/20110902 Firefox/6.0.2 SeaMonkey/2.3.3

sim123 wrote:
> I am not sure what password modification extended operation is

It's a separate LDAP extended operation working on a already existing entry
not a normal modify operation (see RFC 3062).

> is it ldappasswd utility

Yes.

> or does openLDAP offer some kind of API to do so?

See functions ldap_passwd/ldap_passwd_s in OpenLDAP's C API.

> Also can how can I configure hashing in SLAPD? 

You already posted the relevant FAQ entry.

Watch out for password-hash in man-page slapd.conf.

Ciao, Michael.

Follow-Ups:
- Re: secure passwords
  - From: sim123 <Sim3159@gmail.com>

References:
- secure passwords
  - From: sim123 <Sim3159@gmail.com>
- Re: secure passwords
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>
- Re: secure passwords
  - From: sim123 <Sim3159@gmail.com>

Prev by Date: Re: How to disable cn=config module in OpenLDAP
Next by Date: Re: How to disable cn=config module in OpenLDAP
Index(es):
- Chronological
- Thread