[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3566) ldapadd hashes passwords?

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#3566) ldapadd hashes passwords?
From: hyc@symas.com
Date: Thu, 24 Feb 2005 09:26:15 GMT

Mitchell, Michael J wrote:

>>Not true. ldapadd never hashes anything, in any version of OpenLDAP.
>>    
>>
>
>Errr really?? If this is true then something weird is happening, because
>I get the same thing when I add a userPassword in an ldif file via
>ldapadd... (2.2.17 on Solaris 9)
> 
>  
>
>>in ldif:
>>    
>>
>userPassword: testing123
>
>  
>
>>from ldapsearch:
>>    
>>
>userPassword:: dGVzdGluZzEyMw==
>  
>
ldapadd stores exactly what you provide, without any alteration.

You are simply misinterpreting the result that ldapsearch gives you. See 
the ldif(5) manpage.

Note that this ldapsearch result has two colons, which signifies a 
base64 encoded value. base64 encoding is not hashing, it is just a 
method of encoding 8-bit data so that it can be safely printed as 7-bit 
text without any unexpected control characters (and other misc 
characters) from getting lost.

-- 
  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

Prev by Date: Re: (ITS#3566) ldapadd hashes passwords?
Next by Date: ACL filter and backend SQL
Index(es):
- Chronological
- Thread