directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alex Karasulu (JIRA)" <>
Subject [jira] Assigned: (DIRSERVER-1064) Admin password cannot be hashed
Date Thu, 27 Mar 2008 16:33:24 GMT


Alex Karasulu reassigned DIRSERVER-1064:

    Assignee: Alex Karasulu  (was: Emmanuel Lecharny)

> Admin password cannot be hashed
> -------------------------------
>                 Key: DIRSERVER-1064
>                 URL:
>             Project: Directory ApacheDS
>          Issue Type: Bug
>          Components: core
>         Environment: Any
>            Reporter: Alex Karasulu
>            Assignee: Alex Karasulu
>            Priority: Critical
>             Fix For: 1.5.2
> The administrator password is present within the server.xml and within the system partition.
 This is the case to require authentication to startup the server with access to the data
therein.  The problem is you cannot maintain the admin password in this file in hashed form.
 When authenticating it will get double hashed.  So either on startup and on internal admin
authentication you bypass hashing and only do it through the protocol or we need to force
keeping the admin password in clear text. 
> This is not such a good thing IMO.  Something must be done for this.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message