[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Compare-Request on hashed userPassword

To: Buchan Milne <bgmilne@staff.telkomsa.net>
Subject: Re: Compare-Request on hashed userPassword
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 29 Sep 2011 19:51:29 +0200
Cc: openldap-technical@openldap.org
In-reply-to: <201109291753.30835.bgmilne@staff.telkomsa.net>
References: <4E820108.5000508@stroeder.com> <201109291753.30835.bgmilne@staff.telkomsa.net>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:7.0) Gecko/20110923 Firefox/7.0 SeaMonkey/2.4

Buchan Milne wrote:
> On Tuesday, 27 September 2011 18:59:52 Michael Ströder wrote:
>> We have {SSHA}-hashed passwords in attribute userPassword.
>>
>> One application sends CompareRequests with the clear-text password instead
>> of a BindRequest to validate the password which obviously fails. The
>> application vendor claims it is too much effort to change that behaviour
>> in the application.
> 
> Wouldn't it be more beneficial to everyone if you asked the vendor to provide 
> a version of their software that was standards-compliant?

As said in another posting that is my own first and preferred recommendation.
But sometimes it's not so easy...

Ciao, Michael.

References:
- Compare-Request on hashed userPassword
  - From: Michael Ströder <michael@stroeder.com>
- Re: Compare-Request on hashed userPassword
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Re: How do you have LDAP Setup for Apps
Next by Date: Re: How do you have LDAP Setup for Apps
Index(es):
- Chronological
- Thread