Hello,
We are authenticating from some Java written software against an
OpenLDAP system by reading the users 'userPassword' LDAP attribute,
calculating the clear text password against the SSHA hash string.
It turned out that some (a few number) of these hash are stored in the
form:
userPassword:: e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==
which decodes to:
$ echo 'e3NzaGF9R2tSOU91SGhOakFoZzBWeVNtY0JHRUE5b2NMVU5GZWZnY0VaMXc9PQ==' |
openssl base64 -d
{ssha}GkR9OuHhNjAhg0VySmcBGEA9ocLUNFefgcEZ1w==
i.e. with SSHA in small letters. It's only 1 of thousand users having
the tag as '{ssha}'.
Why is this?
Thanks
matthias
--
Matthias Apitz, ✉ [email protected], 🌐 http://www.unixarea.de/ ☎
+49-176-38902045
No! Nein! ¡No! Όχι! -- Ευχαριστούμε!
