[Date Prev][Date Next] [Chronological] [Thread] [Top]

Antw: Passwords, Hashing, and Binds

>>> Bram Cymet <bcymet@cbnco.com> schrieb am 28.08.2014 um 22:26 in Nachricht
> Hi,
> I am storing users passwords in a userPassword attribute. When the
> passwords are hashed with MD5 I can bind as the user just fine. If I
> hash the password with sha-256 I get invalid credentials.

I wonder: My slappasswd only knows about {SHA} and {SSHA}, {MD5} and {SMD5}, {CRYPT}, and {CLEARTEXT}. Section 14.4 of the manual indicates that hashed passwords are non-standard anyway. So implement the non-standard on your clients.

> Is there something I have to change in my client?
> Is there something I have to change on the server?
> Is binding a user with a password stored with sha-256 (or at least
> something better then md5) even possible?
> Thanks,
> -- 
> Bram Cymet
> Software Developer
> Canadian Bank Note Co. Ltd.
> 613-608-9752