[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Encrypted Passwords

To: openldap list <openldap-software@OpenLDAP.org>
Subject: Re: Encrypted Passwords
From: Thomas Gagne <tgagne@ix.netcom.com>
Date: Fri, 16 Nov 2001 11:00:08 -0500
Organization: eFinNet, Corp.
References: <3BF52830.64D1F1C0@ameritech.net> <20011116101304.C32266@usa.net>

When you do basic authentication on a web server, the password arrives in the
CGI script encrypted.  I was wondering if this encrypted password could be
passed to an LDAP server, and your response suggests it cannot (should not).
That's fine.  We'll just write a quick login screen that gets both
username/password so we can have the password in cleartext on the server to
pass to LDAP.  Since we're doing this over an https session they won't be
cleartext on the wire.

Thanks.

--
.tom

Follow-Ups:
- Re: Encrypted Passwords
  - From: Michael Ströder <michael@stroeder.com>
- Re: Encrypted Passwords
  - From: Kervin Pierre <kpierre@fit.edu>

References:
- Encrypted Passwords
  - From: Thomas Gagne <tgagne@ameritech.net>
- Re: Encrypted Passwords
  - From: Peter W <peterw@usa.net>

Prev by Date: Re: LDAP BACKEND
Next by Date: Re: indexing createTimestamp
Index(es):
- Chronological
- Thread