[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: why doesn't my plain text password show a plain text value?

Good day,
Because passwords can hold characters that are not normally stored in LDAP, they are Base64 encoded.
Note that this is only to hold the password data; the Base64 data can be easily decoded into plaintext.  It goes without saying that you should use encypted passwords. =)

Darren Gamble
Planner, Regional Services
Shaw Cablesystems GP
630 - 3rd Avenue SW
Calgary, Alberta, Canada
T2P 4L4
(403) 781-4948

-----Original Message-----
From: Leila Lappin [mailto:galaxylappin@comcast.net]
Sent: Thursday, April 11, 2002 6:44 PM
To: OpenLDAP-software@OpenLDAP.org
Subject: why doesn't my plain text password show a plain text value?

Hello list,
I'm using openLDAP 2.0.11 without sasl support or SSL.  I add users with plain text passwords, the value in the ldif file is plain text and I'm not using any encryption method as far as I can tell.  But when I check the values in the data base after a record has been added I see the password having some other nonsensical value as if it's been encrypted.  Does anyone have any idea what's happening?  I don't mind it and rather prefer it this way but I'm curios.  I've seen the same thing whether I use openLDAP client commands or a Java program.
This is the command I'm using for adding through openldap.
    ldapmodify -a -d 1 -x -D "cn=Directory Manager, dc=myDC, dc=com" -w secret -f d:\openLDAP\ldifs\addUser.ldif