[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: encrypt password by md5 twice?

To: ghenry@suretecsystems.com (Gavin Henry), zhangweiwu@realss.com (Zhang Weiwu)
Subject: Re: encrypt password by md5 twice?
From: manu@netbsd.org (Emmanuel Dreyfus)
Date: Thu, 11 Oct 2007 10:22:44 +0200
Cc: OpenLDAP Software List <openldap-software@openldap.org>
In-reply-to: <470DD79B.70706@suretecsystems.com>
User-agent: MacSOUP/2.7 (unregistered for 264 days)

Gavin Henry <ghenry@suretecsystems.com> wrote:

> >    3. Now, how we can migrate this system to use openldap. AFAIK
> >       openldap have no direct support for such hash. There are a lot of
> >       users of the system and there will be problems if migration is
> >       done and everyone's password is reset..
> 
> You'd have to get everyone to type in their md5 hash ;-)
> 
> You've no choice but to reset all passwords. Seems like the best time to
> do it under the "migration" umbrella.

Alternatively, you can crack your MD5 hashes to recover the password
hashes. If that's so easy, it should not be a problem...

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@netbsd.org

References:
- Re: encrypt password by md5 twice?
  - From: Gavin Henry <ghenry@suretecsystems.com>

Prev by Date: Re: lCould not parse line... slapadd
Next by Date: Re: Info on cn=Monitor items
Index(es):
- Chronological
- Thread