[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: password

To: "Buchan Milne" <bgmilne@staff.telkomsa.net>, "Eudes LEDUCQ" <LEDUCQ@hec.fr>
Subject: RE: password
From: "Kasundra, Digant" <digant@uta.edu>
Date: Mon, 21 Nov 2005 10:11:45 -0600
Cc: <OpenLDAP-software@OpenLDAP.org>
Content-class: urn:content-classes:message
References: <s37cca1e.045@MI151.HEC.FR> <200511211347.37724.bgmilne@staff.telkomsa.net>
Thread-index: AcXuksqJYWAJU30OQPqcybhXCaCbWgAI3o0+
Thread-topic: password

It should probably be noted that this isn't a very good idea.  First of all, if you are likely only to see the hash unless you are storing passwords in clear text (also a bad idea).  I didn't read all of the original email but I have to wonder if there is a reason to retrieve the password.  If you are trying to authenticate, just do a bind as the DN you want to authenticate.

-- DK

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org on behalf of Buchan Milne
Sent: Mon 11/21/2005 5:47 AM
To: Eudes LEDUCQ
Cc: OpenLDAP-software@OpenLDAP.org
Subject: Re: password

On Thursday 17 November 2005 19:20, Eudes LEDUCQ wrote:
> Hi,
>
> is it possible to have the password of an entry when i make a search
> like the over attributes ?

Yes, if the DN you are binding as has read access to the userPassword 
attributes, you will be able to retrieve the contents of the userPassword 
attribute.

Since you haven't posted your ACLs, it's difficult to help you further.

Regards,
Buchan
-- 
Buchan Milne
ISP Systems Specialist
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

References:
- password
  - From: "Eudes LEDUCQ" <LEDUCQ@hec.fr>
- Re: password
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Re: Re[4]: openldap-server-2.2.29: multimaster support
Next by Date: Re: Re[4]: openldap-server-2.2.29: multimaster support
Index(es):
- Chronological
- Thread