[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#8023) slappasswd with sha2 overlay can generate hashes but not salted hashes

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#8023) slappasswd with sha2 overlay can generate hashes but not salted hashes
From: quanah@zimbra.com
Date: Tue, 13 Jan 2015 20:00:27 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

--On Tuesday, January 13, 2015 7:24 PM +0000 Jonathan Price 
<freebsd@jonathanprice.org> wrote:

> I do apologise for the confusion, I'll try to clarify below:
>
> Here is the command you ran successfully:
> /opt/zimbra/openldap/sbin/slappasswd -h
> '{SSHA512}' -o module-path=/opt/zimbra/openldap/sbin/openldap -o
> module-load=pw-sha2 -s test
> {SSHA512}TSwAWmK3sv42RbAasugMPR8d7GLozXtKU00v5Jdd4ebmXBsOpt5We5HNkXxFfy5
> Ptaoa/KUsmTV5484NA3UmrHrOpyUVnEh9
>
> Here is an example of me running just a plain SHA512
> slappasswd -h '{SHA512}' -o module-path=/usr/local/libexec/openldap -o
> module-load=pw-sha2
> {SHA512}7iaw3Ur350mqGo7jwQrpkj9hiYB3Lkc/iBml1JQODbJ6wYX4oOHV+E+IvIh/1nsUN
> zLDBMxfqa2Ob1f1ACio/w==
>
> And here is an example of me running a salted SHA512 (SSHA512)
> slappasswd -h '{SSHA512}' -o module-path=/usr/local/libexec/openldap -o
> module-load=pw-sha2 -s test
> Password verification failed.
>
> I hope this helps to clarify.

Yes, thank you.  So I'm using 2.4.39.  There were some minor changes to 
slapd-sha2 in 2.4.40.  I will see if I can reproduce the issue with current 
RE24.


--Quanah


--

Quanah Gibson-Mount
Platform Architect
Zimbra, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

Prev by Date: Re: (ITS#8023) slappasswd with sha2 overlay can generate hashes but not salted hashes
Next by Date: Re: (ITS#7969) LMDB: Globally shared fields of meta-data are not 'volatile'.
Index(es):
- Chronological
- Thread