Re: Can I use hashed password for ldap_bind_pw in saslauthd.conf?

• Previous message: Raymond T. Sundland: "Re: Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Maybe in reply to: (no name): "Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Next in thread: (no name): "Re: Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

If you know of a really effective two way hash, please submit code.

Otherwise you can use sasl and you will not need to specify the password
in saslauthd.conf:

ldap_use_sasl: yes
ldap_server: ldap:///
ldap_mech: DIGEST-MD5

-Igor

On Thu, 6 Oct 2005, Raymond T. Sundland wrote:

> chmod 400 saslauthd.conf
>
> If someone has enough access to read the file at this point, they have enough
> access to modify your LDAP database files using the 'slapcat' and 'slapadd'
> commands, so any additional security of a hashed password would be useless.
>
> wrote:
>
>>
>> It's really a bad idea to use clear text..
>>
>> ------------------------------------------------------------------------
>>
>> ----
>> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
>> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
>> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>>
>

-- 
Igor
----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

• Previous message: Raymond T. Sundland: "Re: Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Maybe in reply to: (no name): "Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Next in thread: (no name): "Re: Can I use hashed password for ldap_bind_pw in saslauthd.conf?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]