[Date Prev][Date Next] [Chronological] [Thread] [Top]

problem with cleartext password setup

My reading the archives has lead me to believe that DIGEST-MD5 will
require me to store passwords in cleartext.  To evaluate the usefulness
of this at my site (little point in storing them cleartext if nothing
can use DIGEST-MD5) I have setup a test server, but the password keeps
getting hashed

I have added password-hash {CLEARTEXT} to my slapd.conf  (which gave me
password-hash {CLEARTEXT},{SSHA},{SMD5},{CRYPT}).  That didn't do it, so
I went for just password-hash {CLEARTEXT}.  That also keeps getting my
passwords hashed.

Strangely they are not prefixed with the {HASHTYPE}.

When I run
ldappasswd -H ldapi:/// -D "cn=testuser,dc=iwu,dc=edu" -w Please -x -s

In LDAP I get

userPassword:: cGxlYXNl

I have the ppolicy overlay in place, but the behavior remains even when
it is removed.

The password is changing, but a log level of -1 isn't showing me why
this is getting hashed.

OpenLdap 2.4.7 on Debian Sid.

What did I do?