Re: migrating from crypt to md5

On Tue, Oct 30, 2007 at 07:05:37PM +0100, Piotr KUCHARSKI wrote:
> I was trying to manually put {md5} password in userPassword (19 chars
> long, because that's the motive for change), but then given user does
> not authenticate anymore. I thought slowly putting md5 passwords in
> userPassword would suffice (I have own WWW interface for changing
> passwords where it would be very easy to do), but I cannot ldap_bind()
> with a password that is kept in {md5} format in userPassword.

OK, I've found out, what was the problem. I've encoded "test" like that:
userPassword: {md5}$1$Uw9.1Ii4$0jb1EJmSPz66XpgF/jCsW.
while I should've used different format:
userPassword: {md5}CY9rzUYh03PK3k6DJie09g==

Now OpenLDAP is happily binding the user and everything seems to work,
changing passwords locally (with passwd) also works as expected.

p.

--
Beware of he who would deny you access to information, for in his
heart he dreams himself your master.   -- Commissioner Pravin Lal