[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Openldap password problems

To: jeevan kc <jeev_biz@hotmail.com>, openldap-technical@openldap.org
Subject: Re: Openldap password problems
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Thu, 14 May 2015 14:07:01 -0700
Content-disposition: inline
Dkim-filter: OpenDKIM Filter v2.9.2 edge01.zimbra.com C00DE70017
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zimbra.com; s=C2AA288C-EE47-11E2-9BB0-E820BDD9BDBF; t=1431637630; bh=2qA62Z9bW9tnNDgBR1rLyqNltMaSdgnvBWdttMXio2I=; h=Date:From:To:Subject:Message-ID:MIME-Version:Content-Type: Content-Transfer-Encoding; b=LKE0ZyHGVE+XLflrkrpPYsEIIMGsmB7iXdEDJhs1BIaP4olL5rjOYzk2/CgttjsO6 A8etgTjjwcMuhl50yQ6sHiSDzks8UypNQzv+lq02A7v1SPm0tnSfMZyaYL+7hPYY6P DNU/6RIlxgj1J/0K5qu2fIpGW2XitbCOmIjMuawI=
In-reply-to: <BAY178-W300B400218E7C1CFDC72C8FDD80@phx.gbl>
References: <BAY178-W300B400218E7C1CFDC72C8FDD80@phx.gbl>

--On Thursday, May 14, 2015 10:02 PM +0000 jeevan kc <jeev_biz@hotmail.com>wrote:



Hello all,
We've just noticed that when a user authenticates via LDAP, it  ignores
characters after the right password.
For example a user jkc900 has Password Welcome1


What password hashing mechanism are you using?

"Welcome1" is exactly 8 characters. Older, insecure hashes only treat thefirst 8 characters as significant.


--Quanah



--

Quanah Gibson-Mount
Platform Architect
Zimbra, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

Follow-Ups:
- RE: Openldap password problems
  - From: jeevan kc <jeev_biz@hotmail.com>

References:
- Openldap password problems
  - From: jeevan kc <jeev_biz@hotmail.com>

Prev by Date: RE: Openldap password problems
Next by Date: Re: Openldap password problems
Index(es):
- Chronological
- Thread