[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: use proprietary password hash in "userpassword"
- To: Howard Chu <hyc@symas.com>
- Subject: Re: use proprietary password hash in "userpassword"
- From: Meike Stone <meike.stone@googlemail.com>
- Date: Mon, 23 Jan 2017 10:45:56 +0100
- Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=tXwiQMat69/XWXk3VrLwHFY9hxAnXTlYnQEdxn1ed4U=; b=ufw9X6TcsCsEYty5mhAuUFAOhkqUN7MjfkfTyB/wDUC8nBhMDUOMod3DZqjDgB0ccH F8zpYz6JlB48cI2idP2F1hdpXwOEzwojLmsS9Wnbtb6rdyq7NOZF8m6IR4rorxCFmtkA 7aYys93HZPHkbmAwONCkWw2qyU5G8lGA+kt8x+1+GebSdGHTWJqbFCk5kI+LieT5GddV p/aMDEMf6D5ryNhVBpxZcbmhdSx+0Fzk+PjYRwGU/YNacp7HS5a0mxCdtyeRUW/hIrk4 91bxcqOoi0MlH8e78e82x/XABvNPVKWhlMswq9mjh42aLYzMQFb1WEW0w4rDK6XKtFIM 6EEQ==
- In-reply-to: <e19c8565-2aa8-9851-04f4-4b031e327c2c@symas.com>
- References: <CAFNHiA-aPNjgUd+0jPOJn5zVZoR+KATCNaj7prbzP88=E7mfXw@mail.gmail.com> <WM!3b8751c9dae03e7ecb53d160fc2e4679a61855feefc2ce88da279ed63884d00ac67cdac4e58b38acf9e34df0563574e3!@mailstronghold-1.zmailcloud.com> <e19c8565-2aa8-9851-04f4-4b031e327c2c@symas.com>
2017-01-19 12:31 GMT+01:00 Howard Chu <hyc@symas.com>:
> Meike Stone wrote:
>>
>> Write a openldap modul like pw-sha2 is not the first choice, because
>> we need to compile the openldap after each update on our own and that
>> prevents us to use the distribution packages.
>
>
> Writing an OpenLDAP module like pw-sha2 is precisely the way to write a
> small external binary to validate passwords.
>
> There's no need to recompile all of OpenLDAP just to update a password
> module.
If I use the binary openldap package from the distributor (*1), and I
like to use a own module,
I don't have to recompile the whole openldap, compiling the module is
sufficient?
(1) we think about a subscription from symas ...
Thanks Meike