LDAP+SASL
Norberto Bensa
nbensa at gmail.com
Fri Feb 20 23:12:26 UTC 2009
On Fri, Feb 20, 2009 at 8:39 PM, Michael Peek <peek at tiem.utk.edu> wrote:
> I noticed that the passwords are strings of nonsense characters
> /without/ a preceeding {HASH-MEHOD} string. They are not the
> {CLEARTEXT} entries that I entered with my editor. I reloaded and
> double-checked, and cn=admin,ou=People,dc=nimbios,dc=org has a
> {CLEARTEXT} password according to my editor.
The nonsense characters are the BASE64 encoding of the password. Note
that CREARTEXT passwords are not preceded by {CLEARTEXT} nor {PLAIN}.
For example. given the following ldif:
dn: cn=blah,dc=domain,dc=tld
cn: blah
userPassword: mySuperSecretPassword
When you do a ldapsearch on this entry you'll get:
userPassword: bXlTdXBlclNlY3JldFBhc3N3b3JkCg==
More information about the ubuntu-users
mailing list