[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch -w "password" only check first 8 words ?

To: "shyuejyh.tw" <shyuejyh.tw@yahoo.com.tw>
Subject: Re: ldapsearch -w "password" only check first 8 words ?
From: Zdenek Styblik <stybla@turnovfree.net>
Date: Wed, 09 Jun 2010 07:30:50 +0200
Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <45845.79671.qm@web73404.mail.tp2.yahoo.com>
Openpgp: url=http://stinkfoot.org:11371/pks/lookup?op=index&search=Styblik
Organization: OS TurnovFree.net
References: <45845.79671.qm@web73404.mail.tp2.yahoo.com>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9) Gecko/20100401 Thunderbird/3.0.4

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/09/10 07:23, shyuejyh.tw wrote:
> yes , i use crypt to hash my password .. 
> so ..  the problem is crypt just hash first 8 words , right ?
>  
> and i just need change another hash function like md5 ?
>  
> thanks a lot for your help :-)
> 
> 

Yep, that's correct.

Zdenek

- -- 
Zdenek Styblik
Net/Linux admin
OS TurnovFree.net
email: stybla@turnovfree.net
jabber: stybla@jabber.turnovfree.net


> --- 10/6/9 (三)，Zdenek Styblik <stybla@turnovfree.net> 寫道：
> 
> 
> 寄件者: Zdenek Styblik <stybla@turnovfree.net>
> 主旨: Re: ldapsearch -w "password" only check first 8 words ?
> 收件者: "shyuejyh.tw" <shyuejyh.tw@yahoo.com.tw>
> 日期: 2010年6月9日,三,下午1:05
> 
> 
> On 06/09/10 03:50, shyuejyh.tw wrote:
>> Hi Everyone:
>> i have a question , how can i change ldapsearch command to check password more than 8 words? 
> 
>> my openldap is 2.4.11 (Debian/Lenny)
> 
>> when i use freeradius 2.0.4 to authentication a account, 
>> my password is  12345678 , than i type 123456789 ,  Pass .....
> 
>> this is radius's log:
>> rlm_ldap: login attempt by "amo" with password "123456789"
>> rlm_ldap: user DN: uid=amo,dc=hello,dc=com
>> rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1
>> rlm_ldap: bind as uid=amo,dc=hello,dc=com/123456789
>> rlm_ldap: waiting for bind result ...
>> rlm_ldap: Bind was successful
>> rlm_ldap: user amo authenticated succesfully
>> ++[ldap] returns ok
> 
> 
>> than i try use  ldapsearch search a user (still use password 123456789)
> 
>> ldapsearch  -x -b "dc=hello,dc=com" -D "uid=amo,dc=hello,dc=com" -W -h localhost -LLL uid=jojo
>> Enter LDAP Password:
>> pass than find user information.
> 
>> dn: uid=jojo,dc=hello,dc=com
>> shadowLastChange: 123123
>> loginShell: /bin/csh
>> gidNumber: 102
>> homeDirectory: /home/jojo
>> uidNumber: 1002
> 
>> i guess ldapsearch command just check first 8 words, is this a bug or change something can fix it ?
> 
>> thanks a lot
> 
> 
> 
> 
> hello,
> 
> isn't it because you're using CRYPT for password hash?
> 
> Regards,
> Zdenek
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkwPJwoACgkQ8MreUbSH7ikPsgCgsvEjTOnwflV9Y4MkxuAJgAeN
l5kAoMOWTUhLWGP6kY26LA2zvZ4zeLkN
=nH2z
-----END PGP SIGNATURE-----

Prev by Date: Re: could not config n-way multi-master because insufficient access
Next by Date: Tool to covert from LDIF cn=config to slapd.conf?
Index(es):
- Chronological
- Thread