[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: storing HA1 password hash for HTTP DIGEST, SIP, TURN

To: Daniel Pocock <daniel@pocock.pro>, openldap-technical@openldap.org
Subject: Re: storing HA1 password hash for HTTP DIGEST, SIP, TURN
From: Michael Ströder <michael@stroeder.com>
Date: Mon, 13 Jul 2015 11:03:59 +0200
In-reply-to: <55A379AC.90603@pocock.pro>
References: <55A379AC.90603@pocock.pro>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:36.0) Gecko/20100101 SeaMonkey/2.33.1

Daniel Pocock wrote:
> There are a few protocols that use a HA1[1] password hash, such as HTTP
> DIGEST[1], SIP DIGEST[2] and TURN[3] (which uses HMAC rather than DIGEST)
> 
> Is there a standard LDAP attribute name for storing a HA1 value or
> should it be stored in a regular userPassword attribute as described in
> the manual[4]?

Do you want to use the LDAP server only as dumb password store or do you also
want to use this attribute for LDAP bind operation?

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Re: storing HA1 password hash for HTTP DIGEST, SIP, TURN
  - From: Daniel Pocock <daniel@pocock.pro>

References:
- storing HA1 password hash for HTTP DIGEST, SIP, TURN
  - From: Daniel Pocock <daniel@pocock.pro>

Prev by Date: storing HA1 password hash for HTTP DIGEST, SIP, TURN
Next by Date: Re: storing HA1 password hash for HTTP DIGEST, SIP, TURN
Index(es):
- Chronological
- Thread