-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 06/09/10 07:23, shyuejyh.tw wrote:
yes , i use crypt to hash my password .. so .. the problem is crypt just hash first 8 words , right ?
and i just need change another hash function like md5 ?
thanks a lot for your help :-)
Yep, that's correct.
Zdenek
- -- Zdenek Styblik Net/Linux admin OS TurnovFree.net email: stybla@turnovfree.net jabber: stybla@jabber.turnovfree.net
--- 10/6/9 (三),Zdenek Styblik stybla@turnovfree.net 寫道:
寄件者: Zdenek Styblik stybla@turnovfree.net 主旨: Re: ldapsearch -w "password" only check first 8 words ? 收件者: "shyuejyh.tw" shyuejyh.tw@yahoo.com.tw 日期: 2010年6月9日,三,下午1:05
On 06/09/10 03:50, shyuejyh.tw wrote:
Hi Everyone: i have a question , how can i change ldapsearch command to check password more than 8 words?
my openldap is 2.4.11 (Debian/Lenny)
when i use freeradius 2.0.4 to authentication a account, my password is 12345678 , than i type 123456789 , Pass .....
this is radius's log: rlm_ldap: login attempt by "amo" with password "123456789" rlm_ldap: user DN: uid=amo,dc=hello,dc=com rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1 rlm_ldap: bind as uid=amo,dc=hello,dc=com/123456789 rlm_ldap: waiting for bind result ... rlm_ldap: Bind was successful rlm_ldap: user amo authenticated succesfully ++[ldap] returns ok
than i try use ldapsearch search a user (still use password 123456789)
ldapsearch -x -b "dc=hello,dc=com" -D "uid=amo,dc=hello,dc=com" -W -h localhost -LLL uid=jojo Enter LDAP Password: pass than find user information.
dn: uid=jojo,dc=hello,dc=com shadowLastChange: 123123 loginShell: /bin/csh gidNumber: 102 homeDirectory: /home/jojo uidNumber: 1002
i guess ldapsearch command just check first 8 words, is this a bug or change something can fix it ?
thanks a lot
hello,
isn't it because you're using CRYPT for password hash?
Regards, Zdenek
openldap-technical@openldap.org
-
Zdenek Styblik