[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openldap-software
Subject:    Re: Using Password-hash to create secure passwords..
From:       Howard Chu <hyc () symas ! com>
Date:       2005-01-28 21:22:58
Message-ID: 41FAAD32.5060400 () symas ! com
[Download RAW message or body]

fuser9bb@hotpop.com wrote:

> I was about to complain that the posted FAQ entry talks about password 
> hashes (data), but not Password-hash (slapd.conf option), but I did 
> find an interesting tidbit:
>
> http://www.openldap.org/faq/data/cache/906.html
>
> So this doesn't answer the question, but it does let me rephase the 
> question.
>
> openldap-software:
>
> It seems to me then that it doesn't matter how I submit my 
> userPassword for an update as long as I meet these conditions:

You're not reading carefully enough.

As stated in the above FAQ article - password hashes are only used when 
setting a password with the Password Modify extended operation. Other 
operations just store whatever value you set, verbatim.

-- 
  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

[prev in list] [next in list] [prev in thread] [next in thread]