Date: Sun, 14 Nov 2004 10:07:13 +0100 From: =?ISO-8859-1?Q?Eirik_=D8verby?= <ltning@anduin.net> To: Ivan Voras <ivoras@fer.hr> Cc: current@freebsd.org Subject: Re: Passwd format? Message-ID: <9317D906-361C-11D9-A154-000D9335BCEC@anduin.net> In-Reply-To: <4196398D.2030000@fer.hr> References: <4196398D.2030000@fer.hr>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On the OpenLDAP homepages are a collection of tools that can be used to import existing passwd (and other) data sources into LDAP. I have done this on my ex-NIS-server, and am now using LDAP on all the other servers to authenticate. The passwords were imported just fine, and are working just fine. Took me a while to find those tools though; look here: http://www.padl.com/OSS/MigrationTools.html You might have to hack the scripts slightly to have them run on FreeBSD, but it took me about 2 minutes to do so. Amazing how easy it was after having tried myself for the last 2 days... ;) Good luck! /Eirik On 13. Nov 2004, at 17:42, Ivan Voras wrote: > The Handbook and crypt(3) say passwords in master.passwd are MD5 > hashes if they start with $1$, for example: > > $1$DP.s8oCc$VJo0/026/S5ng6HlD1Sz8/ > > the format is $1$salt$rest. I have several questions: > > How are the values encoded? This looks something like base64. > > Is it possible to actually verify the password against this format > using only a bare implementation of the md5 algorithm? > > Actually, the reason for these questions is that I'm considering using > LDAP authentication on a machine with lots of users and I'm wondering > if existing passwd information could be transported to LDAP. Any > experiences/docs on this? > > Thanks! > _______________________________________________ > freebsd-current@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to > "freebsd-current-unsubscribe@freebsd.org" > > > Hi, On the OpenLDAP homepages are a collection of tools that can be used to import existing passwd (and other) data sources into LDAP. I have done this on my ex-NIS-server, and am now using LDAP on all the other servers to authenticate. The passwords were imported just fine, and are working just fine. Took me a while to find those tools though; look here: http://www.padl.com/OSS/MigrationTools.html You might have to hack the scripts slightly to have them run on FreeBSD, but it took me about 2 minutes to do so. Amazing how easy it was after having tried myself for the last 2 days... ;) Good luck! /Eirik On 13. Nov 2004, at 17:42, Ivan Voras wrote: The Handbook and crypt(3) say passwords in master.passwd are MD5 hashes if they start with $1$, for example: $1$DP.s8oCc$VJo0/026/S5ng6HlD1Sz8/ the format is $1$salt$rest. I have several questions: How are the values encoded? This looks something like base64. Is it possible to actually verify the password against this format using only a bare implementation of the md5 algorithm? Actually, the reason for these questions is that I'm considering using LDAP authentication on a machine with lots of users and I'm wondering if existing passwd information could be transported to LDAP. Any experiences/docs on this? Thanks! _______________________________________________ freebsd-current@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9317D906-361C-11D9-A154-000D9335BCEC>