Re: How to change password storage method?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Andy Schofield wrote:

My real problem is that clients are broadcasting passwords in the
clear (despite pam being told to use md5 with ldap). I am assuming
that is because the ldap server is using SSHA and pam is using md5 so
they negotiate to send passwords in the clear. Does that sound right?


However - it has not solved this problem. The password is still being
sent in the clear. I have /etc/ldap.conf including the line:
What you need is not a hashed password sent over the wire (which achieves very little) but an encrypted transport using SSL, or SASL and kerberos. 

--
Pete

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux