[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: using {CRYPT} for rootpw, using SHA512?

On Fri, Aug 15, 2014 at 12:49:03PM +0100, Miroslaw Baran wrote:
> Works quite well with our LDAP boxes.

So, what I see:

This code yeilds results like:


Which, by eye, looks like output from this:

  # /usr/local/openldap/sbin/slappasswd -h '{CRYPT}' -s TestPass -c "$6$%.12s"

Which do allow my rootdn to bind.

But, what confuses me is that the use of the password overlay as per


Yeilds this sort of results in an ldapsearch:


So -  everything works, but I'm confused visually about the different
formats; the latter, from what I've read, contains info about the hash
format and the salt, but the data I record for rootpw does not.

Why are they different?

> Best regards,
> ??? Miroslaw Baran

Brian Reichert				<reichert@numachi.com>
BSD admin/developer at large