Re: Passwords, Hashing, and Binds

Thursday, 28 August 2014

--On Thursday, August 28, 2014 5:26 PM -0400 Bram Cymet <bcymet(a)cbnco.com&gt; 
wrote:

...
 Hi,

 I am storing users passwords in a userPassword attribute. When the
 passwords are hashed with MD5 I can bind as the user just fine. If I
 hash the password with sha-256 I get invalid credentials.

 Is there something I have to change in my client?
 Is there something I have to change on the server?

 Is binding a user with a password stored with sha-256 (or at least
 something better then md5) even possible? 
Yes, if you correctly use the passwd contrib module allowing non-RFC hashes.

--Quanah

--

Quanah Gibson-Mount
Server Architect
Zimbra, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: Passwords, Hashing, and Binds