On Thu, Jun 24, 2010 at 12:33:10PM -0400, John Dennis wrote:
> But even if you did, ldap has this:
>
> userPassword:: e1NIQX13ak83dXhlS3FYR0NFVlhPTEVzVUo4OW9DWFE9
>
> They aren't the same are they? The LDAP entry looks like a hash, you'll
> have to figure out which kind. Note it does not contain a {hash} prefix
> so FreeRADIUS can't figure what kind of hash it is.
No, the two colons in ldapsearch output just indicate that the attribute
value is MIME-encoded. It can be decoded for example with:
% echo e1NIQX13ak83dXhlS3FYR0NFVlhPTEVzVUo4OW9DWFE9 | mimencode -u
{SHA}wjO7uxeKqXGCEVXOLEsUJ89oCXQ=
% echo e1NIQX13ak83dXhlS3FYR0NFVlhPTEVzVUo4OW9DWFE9 | perl -e 'use
MIME::Base64; print decode_base64(<>);'
{SHA}wjO7uxeKqXGCEVXOLEsUJ89oCXQ=
--
2. That which causes joy or happiness.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
