Hello,
I am trying to use Argon2 or PBKDF2_SHA256 as a secure password hashing function. Since two weeks I am trying to get this to work with reading a lot of information on the internet and I just cannot get it to work.
I am using Ubuntu 20.04 LTS, installed with slapd, ldap-utils, argon2 and trying to set it in the cn=config Frontend setting.
@(#) $OpenLDAP: slapd (Ubuntu) (May 12 2022 13:11:05) $ Debian OpenLDAP Maintainers pkg-openldap-devel@lists.alioth.debian.org
This is the version that is installed from Slapd and when I try to set pw-argon2, {ARGON2}, pw-argon2.so... I tried a lot and it tells me no hash found. If I try {MD5} it works without problems.
As there is no other secure usable password hashing installed the LDAP Server is right now insecure and I cannot move it to production
Please does someone has any idea?
Many kind regards, Lukas
--On Tuesday, April 11, 2023 9:17 PM +0000 Lukas Adrian Kron lukaskron@posteo.de wrote:
As there is no other secure usable password hashing installed the LDAP Server is right now insecure and I cannot move it to production
You've not really provided any information on how you're configuring it, or if the OpenLDAP build you're using even supports it. You've completely failed to list the actual version of OpenLDAP being used as well. This is an annoying bit about the Debian/Ubuntu builds as they strip that information out of the binary. You'll have to look at what version the package is that is being installed via the apt tools.
--Quanah
openldap-technical@openldap.org
-
Lukas Adrian Kron -
Quanah Gibson-Mount