Re: OTP broken?
Michael Ströder wrote:
Dieter Klünter wrote:
> 6. added credentials by ldappasswd
> userPassword:: e1RPVFAxfU5CVUVJNktFSk1ZRENOQlRHSTJUTVFLQ0lOQ0E9PT09
I have not really tried the module myself yet but I note that the key is
actually 21 bytes long (see below). Shouldn't that be 20 bytes?
Looks like you're right. Perhaps we should re-enable the key length checks in
the module (which are currently disabled with #if 0 ).
Ciao, Michael.
Python 2.7.10 (default, May 24 2015, 14:46:10) [GCC] on linux2
>>>
'e1RPVFAxfU5CVUVJNktFSk1ZRENOQlRHSTJUTVFLQ0lOQ0E9PT09'.decode('base64')
'{TOTP1}NBUEI6KEJMYDCNBTGI2TMQKCINCA===='
>>> s='NBUEI6KEJMYDCNBTGI2TMQKCINCA===='.decode('base64')
>>> len(s)
21
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/