[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Incompatable crypt? (ITS#970)

> Crypt password problem.  OpenLDAP 1.2.11 worked just fine with crypt passwords
> generated from the /etc/shadow file.. OpenLDAP 2.0.7 doesn't, and appears to
> only work with those generated by slappasswd.  Problem appears to be in the
> hashed strings generated by the two different methods.. example, the password
> "password" looks like the following for each method:
> $1$WtcNush3$mMDxjvuWtl73gmfL51QBU0         <-- system password (libcrypt)
> sEnmZiwqQzR.U                              <-- slappasswd generated

The second form, with a 2 character salt and 11 characters of one way
encrypted text, is the more standard crypt() output from libc.so. It's
been around forever.  You need to see which crypt() function is beind used
by the two binaries, slappasswd and slapd.  The order of linking libc and
libcrypt would affect this.

-Mark Adamson
 Carnegie Mellon