[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: userPassword: {crypt}

To: "Celso G. Lima" <celso.lima@usm.edu>
Subject: Re: userPassword: {crypt}
From: Peter Marschall <peter.marschall@mayn.de>
Date: Fri, 14 Feb 2003 17:28:44 +0100
Cc: openldap-software@OpenLDAP.org
In-reply-to: <020401c2d442$dbeae690$02a35f83@conted.usm.edu>
Organization: ADPM
References: <00b601c2d38a$07d3bde0$02a35f83@conted.usm.edu> <200302141014.12225.peter.marschall@mayn.de> <020401c2d442$dbeae690$02a35f83@conted.usm.edu>
User-agent: KMail/1.4.3

Hi,

On Friday 14 February 2003 17:05, you wrote:
> > The "{XXX}YYYY" syntax of passwords is specific to OpenLDAP.
> > Novell expects the passwords in cleartext and encrypts/hashes them
> > on the server side with their own algorithm.
>
> I have a linux system with over 18000 users, and I won't have access to
> their passwords in clear text.  Do you know of any other way to do it?

Unfortunately no solution, but maybe a workaround:
1) Create a password changing application that 
   a) chenges the UNIX password
   b) (re)sets the eDir passwords
2) Enforce password change by every user.

Yours
Peter

PS: Using password cracking tools is IMHO no viable option
-- 
Peter Marschall     |   eMail: peter.marschall@mayn.de
Scheffelstraße 15   |          peter.marschall@adpm.de
D-97072 Würzburg    |   Tel:   +49 931 14721
PGP: 0BB1 04A3 0FB0 E27F 8018 52BA A286 7B23 9C22 2C83

References:
- userPassword: {crypt}
  - From: "Celso G. Lima" <celso.lima@usm.edu>
- Re: userPassword: {crypt}
  - From: Peter Marschall <peter.marschall@mayn.de>

Prev by Date: !!! HELP !!!!
Next by Date: Solved issues: dismal performance, and I have no name
Index(es):
- Chronological
- Thread