Re: Exporting MD5 Hash from FD-DS into /etc/shadow

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



fedora-directory-users-request@xxxxxxxxxx wrote:
Date: Tue, 18 Apr 2006 20:14:31 +0300
From: Mike Jackson <mj@xxxxxx>

dennis@xxxxxxxxxxx wrote:
I would like to export the MD5 hash from the Fedora directory user's password attribute into /etc/shadow of a Linux machine not in LDAP (Redhat).

It appears this isn't working, is there a way for me to do this? Not all machines are using ldap but I would like to export from ldap.


Hi,
I haven't tried this, but here's an idea just off the top of my head which _might_ work:


1. take away the {MD5} from the string

2. base64 decode the rest of the string

3. convert the string to hex

4. put the $1$ at the front of the hex string

5. put the whole string into the password field in /etc/shadow and test


If that works, you could write a perl script to automate the procedure. And report back to the list as well :-)

No, the password field is not in hex, it uses the same 6-bit encoding that DES crypt() uses, which is different from base64. base64 uses the characters [A-Z][a-z][0-9]+/ while crypt uses the characters ./[0-9][A-Z][a-z] (in those exact orders).

--
 -- Howard Chu
Chief Architect, Symas Corp.   http://www.symas.com
Director, Highland Sun   http://highlandsun.com/hyc
OpenLDAP Core Team  http://www.openldap.org/project/

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users

[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux