[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: RFC2256: userPassword

To: David Boreham <dboreham@netscape.com>
Subject: Re: RFC2256: userPassword
From: Helmut Volpers <helmut.volpers@icn.siemens.de>
Date: Wed, 30 Jun 1999 09:46:38 +0200
Cc: Paul Collins <paul@oneclick.com>, Robert Allen <robert.allen@eng.sun.com>, " gomez@lhola.engr.sgi.com" <gomez@lhola.engr.sgi.com>, " paulle@microsoft.com" <paulle@microsoft.com>, " ietf-ldapext@netscape.com" <ietf-ldapext@netscape.com>, " Kurt@OpenLDAP.Org" <kurt@openldap.org>
References: <199906291850.LAA14641@ego.mind.net> <37791A7F.8A03E9FF@netscape.com>
Resent-date: Wed, 30 Jun 1999 00:40:39 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"_2RhoD.A.EjG.unce3"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

David,

David Boreham wrote:
> 
> Paul Collins wrote:
> 
> > Why are they world-readable in the first place? I figured authentication
> 
> They aren't. It's a philisophical position that they
> can be read, somehow. This is why we use one-way
> hashes for passwords rather than storing cleartext.

How do you replicate one-way hashed passwords to any other server ?
Can you make a LDIF dump (for backup) and load the data to another
server ?

Is the question really how to store it in the server ? the question is
how 
the password goes over the wire.

Helmut

begin:vcard 
n:Volpers;Helmut 
tel;fax:+49-89-63645860
tel;home:+49-89-1576588
tel;work:+49-89-63646713
x-mozilla-html:FALSE
url:http://www.siemens.com/bus-com/
adr:;;Otto-Hahn-Ring 6;Munich;;81730;Germany
version:2.1
email;internet:Helmut.Volpers@icn.siemens.de
title:Directory Server Architect
x-mozilla-cpt:;30160
fn:Volpers, Helmut 
end:vcard

Follow-Ups:
- Re: RFC2256: userPassword
  - From: dboreham@netscape.com (David Boreham)
- Re: RFC2256: userPassword
  - From: Erik Skovgaard <eskovgaard@geotrain.com>

References:
- Re: RFC2256: userPassword
  - From: Paul Collins <paul@oneclick.com>
- Re: RFC2256: userPassword
  - From: dboreham@netscape.com (David Boreham)

Prev by Date: RE: RFC2256: userPassword
Next by Date: I-D ACTION:draft-ietf-ldapext-acl-reqts-02.txt
Index(es):
- Chronological
- Thread