Re: encrypt password by md5 twice?

Gavin Henry ghenry@suretecsystems.com wrote:

...

3. Now, how we can migrate this system to use openldap. AFAIK openldap have no direct support for such hash. There are a lot of users of the system and there will be problems if migration is done and everyone's password is reset..

You'd have to get everyone to type in their md5 hash ;-)

You've no choice but to reset all passwords. Seems like the best time to do it under the "migration" umbrella.

Alternatively, you can crack your MD5 hashes to recover the password hashes. If that's so easy, it should not be a problem...