[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: OpenLDAP 2.1 Released

On Tue, 11 Jun 2002, Igor Brezac wrote:

> > In Cyrus SASL 2, most of the mechanisms derive their secrets from the
> > plaintext password, and the database itself only stores the plaintext
> > password. They thoughtfully named their database key "userPassword" so
> > using LDAP is seamless. Just use ldapmodify (not ldappasswd) to set a
> > user's userPassword to a plaintext string and it will be usable by all
> > of the SASL mechanisms. (Except SASL/OTP, which always has to record and
> > update its own secret after every use.)
> If you use ldap support in saslauthd you can use ldapmodify.  Passwords

Oops, I meant to say ldappasswd here.

> are stored in a format supported by OpenLDAP (crypt, sha, md5, whichever way
> you have it setup).  saslauthd verifies password with ldap_simple_bind().