[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7278) [PATCH] SHA-2: Add support salted SHA-2 password hashes

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#7278) [PATCH] SHA-2: Add support salted SHA-2 password hashes
From: Kurt@OpenLDAP.org
Date: Tue, 29 May 2012 17:25:53 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

I'd argue that slappassword shouldn't read the configuration and hence not support 'contributed' hash mechanisms.

But if you are going to make slappassword read the configuration, then it needs to be restricted to only users who have read access to the configuration.

I have no real opinion about whether SHA-2 should or shouldn't be in the core set of hashes... but personally I rather push folks towards SCRAM compatible hashes than the same poor usages of newer hash algorithms.

-- Kurt

Prev by Date: (ITS#7282) Invalid Regex in Documentation
Next by Date: Re: (ITS#7278) [PATCH] SHA-2: Add support salted SHA-2 password hashes
Index(es):
- Chronological
- Thread