[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: encrypt password by md5 twice?

Gavin Henry <ghenry@suretecsystems.com> wrote:

> >    3. Now, how we can migrate this system to use openldap. AFAIK
> >       openldap have no direct support for such hash. There are a lot of
> >       users of the system and there will be problems if migration is
> >       done and everyone's password is reset..
> You'd have to get everyone to type in their md5 hash ;-)
> You've no choice but to reset all passwords. Seems like the best time to
> do it under the "migration" umbrella.

Alternatively, you can crack your MD5 hashes to recover the password
hashes. If that's so easy, it should not be a problem...

Emmanuel Dreyfus