[Date Prev][Date Next] [Chronological] [Thread] [Top]

SSHA hash are stores as '{ssha}......' and '{SSHA}......'



Hello,

We are authenticating from some Java written software against an
OpenLDAP system by reading the users 'userPassword' LDAP attribute,
calculating the clear text password against the SSHA hash string.

It turned out that some (a few number) of these hash are stored  in the
form:

userPassword:: e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==

which decodes to:

$ echo 'e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==' | openssl base64 -d
{ssha}GkR9OuHhNjAhg0VySmcBGEA9ocLUNFefgcEZ1w==

i.e. with SSHA in small letters. It's only 1 of thousand users having
the tag as '{ssha}'.

Why is this?

Thanks

	matthias

-- 
Matthias Apitz, ✉ guru@unixarea.de, 🌐 http://www.unixarea.de/  ☎ +49-176-38902045
No! Nein! ¡No! Όχι! -- Ευχαριστούμε!