On Mon, 2006-08-14 at 17:39 -0600, m christensen wrote: > OK. after going the rounds on this, it does appear to be happy to use > MD5 type password hashes. > > The problem is the fact our password files contain > USER:<$apr1$HASH>:<Real Name>:<Email Address> > > I thought this was a pretty standard format. > > If I strip everything after the password hash, it works..... > > Is the above format 'legal' and is this a bug?
AFAICT that format may just be an undocumented "feature" of Apache's htpasswd parser. It's not used by either the htpasswd command line app or the Perl API, so I don't think there are any standard tools to generate the files with that extra information. Have you been adding that information to the files by hand? > m christensen wrote: > > I have an installed base and after much hair-pulling as to why > > existing htpasswd files worked with apache > > but fail with the account manager plugin, it appears my old password > > files are MD5 encoded to allow > > integration with our existing windows infrastructure. > > > > Is it possible to make the account manager plugin use MD5 hashes > > rather than force everyone > > to create new accounts? > > > > Marc > > > > _______________________________________________ > > Trac mailing list > > [email protected] > > http://lists.edgewall.com/mailman/listinfo/trac > > > _______________________________________________ > Trac mailing list > [email protected] > http://lists.edgewall.com/mailman/listinfo/trac _______________________________________________ Trac mailing list [email protected] http://lists.edgewall.com/mailman/listinfo/trac
