[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Hashed passwords in userpassword

To: Michael Ströder <michael.stroeder@inka.de>
Subject: Re: Hashed passwords in userpassword
From: "David E. Storey" <dave@tamos.net>
Date: Sat, 25 Sep 1999 15:11:42 -0400
Cc: openldap-general@OpenLDAP.org
Organization: eyeo.com <http://www.eyeo.com/>
References: <37ED12E3.870E8335@inka.de>

Michael Ströder wrote:

[snip]

> This works fine with using crypt, e.g.
> userpassword: {CRYPT}.5X.al91HG.WI
> But what's the scheme for using MD5 or SHA-1 hashed passwords? I saw
> some examples but forgot where.

very similar to crypt:

userPassword: {sha}W6ph5Mm5Pz8GgiULbPgzG37mj9g=
userPassword: {md5}X03MO1qnZdYdgyfeuILPmQ==

The only real difference is that the hash is base64 encoded.

I'm not sure what scripting engine your using, but php v3.0.12 (and maybe
a couple versions under that) support mhash:

<?
$hashedPW_MD5 = "{md5}".base64_encode(mhash(MHASH_MD5, $userPassword));
$hashedPW_SHA1 = "{sha}".base64_encode(mhash(MHASH_SHA1, $userPassword));
?>

d!

Follow-Ups:
- Re: Hashed passwords in userpassword
  - From: Michael Ströder <michael.stroeder@inka.de>

References:
- Hashed passwords in userpassword
  - From: Michael Ströder <michael.stroeder@inka.de>

Prev by Date: Re: Hashed passwords in userpassword
Next by Date: Re: Hashed passwords in userpassword
Index(es):
- Chronological
- Thread