[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: bindmethod and credentials in slurpd replication.

Michael Ströder wrote:
> Zdenek Styblik wrote:
>> Michael Ströder wrote:
>>> Sai wrote:
>>>> But when defining “replica”, I got the following
>>>> questions.
>>>> 1)        For credentials, can I use hashed password like for rootpw
>>> No, credentials have to provided in clear since slurpd is a LDAP client
>>> to the slave.
>> a bit off topic, but is this also valid for 2.4.x series?
> slurpd is not available in 2.4.x anymore.

I'm sorry, I just took this as common.

>> perhaps SALS would allow hashed passwords?
> No. E.g. SASL bind DIGEST-MD5 needs the clear-text password in the
> config(!) to be able to generate the hash over the challenge value and
> the clear-text password. A hash is transmitted over wire though.

Yep. But I've meant hashed password in config (and so did Sai).
I was just curious, if I haven't overlooked something :)


Zdenek Styblik
Net/Linux admin
OS TurnovFree.net
email: stybla@turnovfree.net
jabber: stybla@jabber.turnovfree.net