SSHA hash are stores as '{ssha}......' and '{SSHA}......'

29 Sep 2015


      Hello,
We are authenticating from some Java written software against an
OpenLDAP system by reading the users 'userPassword' LDAP attribute,
calculating the clear text password against the SSHA hash string.
It turned out that some (a few number) of these hash are stored  in the
form:
userPassword:: e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==
which decodes to:
$ echo 'e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==' | openssl base64 -d
{ssha}GkR9OuHhNjAhg0VySmcBGEA9ocLUNFefgcEZ1w==
i.e. with SSHA in small letters. It's only 1 of thousand users having
the tag as '{ssha}'.
Why is this?
Thanks
matthias
-- 
Matthias Apitz, ✉ guru@unixarea.de, 🌐 http://www.unixarea.de/  ☎ +49-176-38902045
No! Nein! ¡No! Όχι! -- Ευχαριστούμε!

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

SSHA hash are stores as '{ssha}......' and '{SSHA}......'