[389-users] Data corruption after upgrade.
Theunis De Klerk
theunis at pier29.co.za
Wed Aug 19 23:03:27 UTC 2009
> In general, you should always pass the clear text password to the
> directory server, and let it hash it and compare it. This also allows
> you to use the password policy features of the directory server (e.g.
> password syntax checking does not work with pre-hashed passwords).
Oh.
> Were these applications that pre-hashed the SSHA passwords, then sent
> the pre-hashed SSHA password to the server, when adding a user or
> modifying the password? If so, then it could be that the legacy SSHA
> handling was broken.
They were pre-hashed, and sent in the pre-hash format to the add and modify
commands.
More information about the Fedora-directory-users
mailing list