From users-return-4955-apmail-directory-users-archive=directory.apache.org@directory.apache.org Wed Dec 12 03:10:13 2012 Return-Path: X-Original-To: apmail-directory-users-archive@www.apache.org Delivered-To: apmail-directory-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 68787D71A for ; Wed, 12 Dec 2012 03:10:13 +0000 (UTC) Received: (qmail 38708 invoked by uid 500); 12 Dec 2012 03:10:13 -0000 Delivered-To: apmail-directory-users-archive@directory.apache.org Received: (qmail 38430 invoked by uid 500); 12 Dec 2012 03:10:11 -0000 Mailing-List: contact users-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@directory.apache.org Delivered-To: mailing list users@directory.apache.org Received: (qmail 38359 invoked by uid 99); 12 Dec 2012 03:10:08 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 12 Dec 2012 03:10:08 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of ayyagarikiran@gmail.com designates 209.85.212.53 as permitted sender) Received: from [209.85.212.53] (HELO mail-vb0-f53.google.com) (209.85.212.53) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 12 Dec 2012 03:10:03 +0000 Received: by mail-vb0-f53.google.com with SMTP id b23so219518vbz.12 for ; Tue, 11 Dec 2012 19:09:43 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=Ek/BGFg2vSXn5xnVJxzXqwVUK/ak1a8sQV+garfF5DE=; b=W/Bf/5JABZnS2P+auCiwOSj/djqDbCJiBKzUzxVRHGk5cZh4uFGPWDg380Qmmy8Bt1 RfowXX36xxmjZUDyyn5M5B2FfU7GxceupymymbnPcSgGK7TT84RmGOcI74O1nIlMvpZZ bgZ3gkvaviwqR7rvaJIXme+BwOitJxz3zHJ9GaIv9ZpuyhviJFzuLXQJ62MqzkdR4HFb qlvjbIQiTqTM11aqjkfO6WVsdXXXt3Ty32vXTPmMQ9gUe+htR8GXPArVKGU6RpzdUqrV q5CmbUZt8Zdiq2lToLT+NNVHu7bzq/oI6yrM39xshGJjreFpCRbZDgfhpL080qxKc45h hodw== MIME-Version: 1.0 Received: by 10.58.85.134 with SMTP id h6mr170333vez.18.1355281782968; Tue, 11 Dec 2012 19:09:42 -0800 (PST) Sender: ayyagarikiran@gmail.com Received: by 10.58.136.42 with HTTP; Tue, 11 Dec 2012 19:09:42 -0800 (PST) In-Reply-To: References: Date: Wed, 12 Dec 2012 08:39:42 +0530 X-Google-Sender-Auth: wiBKu9AJML7f5tz7kUO8cOFLprI Message-ID: Subject: Re: Retrieving Salts From: Kiran Ayyagari To: users@directory.apache.org Content-Type: multipart/alternative; boundary=047d7b6d93403e92ac04d09f2122 X-Virus-Checked: Checked by ClamAV on apache.org --047d7b6d93403e92ac04d09f2122 Content-Type: text/plain; charset=ISO-8859-1 this is indeed the case, one can use the PasswordUtil's methods if needed for retrieving various parts of a hash [1] http://svn.apache.org/viewvc/directory/shared/trunk/ldap/model/src/main/java/org/apache/directory/shared/ldap/model/password/PasswordUtil.java?view=markup On Tue, Dec 11, 2012 at 11:58 PM, Linus van Geuns wrote: > Hey, > > I cannot speak from experience with salted userPassword values of ApacheDS, > but usually they are stored within the attribute userPassword itself. > Format: > userPassword: { } > > e.g. for password "test123": > userPassword: {SSHA}e8wXXTVuvS5IPd0tueLHnrWYrgJZtL1j > > The presence and length of the salt and the length of the hash depend on > the chosen algorithm. > > Regards, Linus > > > On Tue, Dec 11, 2012 at 7:17 PM, Kevin Hamilton > wrote: > > > Hello, > > > > I use the SSHA512 Hashing Interceptor to store passwords. I was wondering > > if there is any way to retrieve these salts after the fact. Where are > they > > stored? > > > > Thanks, > > Kevin > > > > > > -- > Linus van Geuns > IT-Dienstleistungen > > Telefon: +49 179 7700683 > E-Mail: > > Gartenstr. 56a > 76133 Karlsruhe > -- Kiran Ayyagari http://keydap.com --047d7b6d93403e92ac04d09f2122--