Re: cleartext password

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Mikael Kermorgant wrote:


Is there be a way to store a "clear version" of the passwords in an
external storage (sql  db, text file...) while turning on encryption
on the directory server ?


Yes there is. It might be useful to know more about what you are
trying to achieve, because there are a few ways to skin this cat.
But to start, there is a magic attribute added to the entry during processing 
inside the server that holds the un-hashed password value (for
operations that modify or add the password attribute). This is used
for example to propagate cleartext password values in replication
and for Windows sync. You can pick up that attribute in a plugin
and salt it away somewhere.


--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux