directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Linus van Geuns <li...@vangeuns.name>
Subject Re: [ApacheDS] Hash question
Date Fri, 08 Oct 2010 13:22:18 GMT
Hey!

On Fri, Oct 8, 2010 at 3:07 PM, Martin Schuster (IFKL IT OS DS CD)
<Martin.Schuster1@infineon.com> wrote:
> On 10/07/2010 09:22 PM, Jason Russler wrote:
>>   Can the (MD5) password hashes from a shadow file be re-encoded to
>> something Apache DS can understand
>>
> re-encoding is not possible, but you can check which algorithm is used
> in your shadow-file (e.g. if the passwords there start with $1$ it's
> MD5, see crypt(3) for a list), and then check if ApacheDirServer knows
> that algorithm.
>
> Using DirectoryStudio I can see the following hash-algos when setting
> a userPassword: SHA, SSHA, MD5, SMD5, CRYPT
> (don't know if that list is queried from the server or hardcoded into
> DirStudio)
>
> So if you currently have
> $1$PzZV2WYK$Asd3JtTFOwR3JnNTPjxDq/
> in /etc/shadow, you can try
> {MD5}PzZV2WYK$Asd3JtTFOwR3JnNTPjxDq/

As your example hash is salted, it should be:
{SMD5}PzZV2WYK$Asd3JtTFOwR3JnNTPjxDq/

(AFAIK)

Regards, Linus

Mime
View raw message