[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OTP broken?



Michael Ströder wrote:
Dieter Klünter wrote:
6. added credentials by ldappasswd
    userPassword:: e1RPVFAxfU5CVUVJNktFSk1ZRENOQlRHSTJUTVFLQ0lOQ0E9PT09

I have not really tried the module myself yet but I note that the key is
actually 21 bytes long (see below). Shouldn't that be 20 bytes?

Looks like you're right. Perhaps we should re-enable the key length checks in the module (which are currently disabled with #if 0 ).


Ciao, Michael.

Python 2.7.10 (default, May 24 2015, 14:46:10) [GCC] on linux2
'e1RPVFAxfU5CVUVJNktFSk1ZRENOQlRHSTJUTVFLQ0lOQ0E9PT09'.decode('base64')
'{TOTP1}NBUEI6KEJMYDCNBTGI2TMQKCINCA===='
s='NBUEI6KEJMYDCNBTGI2TMQKCINCA===='.decode('base64')
len(s)
21



--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/