I'm running ldapd on 5.7. {CRYPT} with bcrypt works fine for moodle,
dokuwiki, and phpbb. encrypt(1) can generate them or PHP's
password_hash() with (possibly without?) something like:
// {CRYPT} is part of the string at this point
$newdata['userPassword'][9] = 'b'; // $2y$ -> $2b$Far as I know the LDAP RFC's only talk about md5/sha1, but who cares. On 7/18/15, Matthew Weigel <[email protected]> wrote: > On 7/18/15 4:27 AM, Olivier Mehani wrote: > >> My root user is authenticated with BSDAUTH. The rest of the users with >> an md5crypt in the userPassword. This works with the version from 5.5 >> with a range of applications (ownCloud, Wordpress, PHPLDAPAdmin, ...). > > md5crypt...? Well, there's your problem. > > From http://www.openbsd.org/plus56.html: > > * Removed md5crypt from crypt(3). > > So ldapd(8) is passing the hash string along to crypt(3) when checking > the user's password and crypt(3) is unable to handle it. You'll need to > start migrating these password hashes. > -- > Matthew Weigel > hacker > unique & idempot . ent
