[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Incompatable crypt? (ITS#970)

To: openldap-its@OpenLDAP.org
Subject: Re: Incompatable crypt? (ITS#970)
From: adamson@andrew.cmu.edu
Date: Thu, 18 Jan 2001 15:28:02 GMT

> Crypt password problem.  OpenLDAP 1.2.11 worked just fine with crypt passwords
> generated from the /etc/shadow file.. OpenLDAP 2.0.7 doesn't, and appears to
> only work with those generated by slappasswd.  Problem appears to be in the
> hashed strings generated by the two different methods.. example, the password
> "password" looks like the following for each method:
> 
> $1$WtcNush3$mMDxjvuWtl73gmfL51QBU0         <-- system password (libcrypt)
> 
> sEnmZiwqQzR.U                              <-- slappasswd generated


The second form, with a 2 character salt and 11 characters of one way
encrypted text, is the more standard crypt() output from libc.so. It's
been around forever.  You need to see which crypt() function is beind used
by the two binaries, slappasswd and slapd.  The order of linking libc and
libcrypt would affect this.


-Mark Adamson
 Carnegie Mellon

Prev by Date: Incompatable crypt? (ITS#970)
Next by Date: Re: Incompatable crypt? (ITS#970)
Index(es):
- Chronological
- Thread