Convert existing openLDAP password from SSHA to SHA-1
William Muriithi
william.muriithi-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org
Fri Aug 19 19:15:18 UTC 2011
Thanks a lot guys for the response
On 19 August 2011 14:49, Ian Petersen <ispeters-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org> wrote:
> On Fri, Aug 19, 2011 at 11:44 AM, Lennart Sorensen
> <lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org> wrote:
>> If you had the passwords in plain text then you are already doing
>> passwords very wrong.
>
> Agreed!
Agree too. It would be really bad to save then in clear text. We are
not doing that and do not plan to taking that route.
So, essentially its correct to assume the current password will stay
in their current form.
Sorensen raised a good suggestion, change the default openLDAP hashing
method so that password would be SHA-1 going forward. Would you know
how one can go about doing that? I am assuming its a line that will
need to be introduced on slapd.conf but have not figured it from the
openldap documentation
Thanks again guys for the help.
Regards,
William
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list