Re: [Studio] upper/lowercase {crypt} at beginning of userPassword

Wed, 10 Oct 2007 04:46:01 -0700 

Hi,

I checked it and it seems using {crypt} is failing.

    /** The constant used for the crypt hash, value <code>CRYPT</code> */
>     public static final String HASH_METHOD_CRYPT = "CRYPT"; //$NON-NLS-1$


I  found this code in the Password class  (
org.apache.directory.studio.ldapbrowser.core.model.Password).

There's a test in the PasswordTest class for testing Crypt encrypted
password:

>     /**
>      *
>      */
>     public void testPasswordCRYPTEncrypted()
>     {
>         Password password = new Password( "{CRYPT}qFkH8Z1woBlXw" );
>
>         assertTrue( password.verify( "secret" ) );
>     }



I Added another one with lowercase 'crypt':

>     /**
>      *
>      */
>     public void testPasswordCRYPTEncrypted2()
>     {
>         Password password = new Password( "{crypt}qFkH8Z1woBlXw" );
>
>         assertTrue( password.verify( "secret" ) );
>     }
>

The first one passes, the second one fails.

Is there an RFC for this somewhere ?

Regards,
P-A

On 10/10/07, Emmanuel Lecharny <[EMAIL PROTECTED]> wrote:
>
> Hi Martin,
>
> I think you should use {crypt}, and not {CRYPT}, due to some code we
> have in the server :
>
> ...
>             if ( "crypt".equals( algorithm ) )
> ...
>
> This is a _bad_ piece of code, and will be fixed to :
>
> ...
>             if ( "crypt".equalsignorecase( algorithm ) )
> ...
>
> Now, we may have the opposite pb in Studio.
>
> I gonna check that.
>
> Can you fill a JIRA ?
>
> Thanks !
>
> On 10/10/07, Martin Schuster (IFKL IT OS DSM CD)
> <[EMAIL PROTECTED]> wrote:
> > I have a lot entries where the userPassword starts with
> > {crypt} (instead of the uppercase {CRYPT}).
> >
> > DirectoryStudio tells me
> > Hash Method: Unsupported hash method
> >
> > Is this a bug in DS, or should I convert the start of
> > all userPassword attributes to uppercase {CRYPT}?
> >
> > tia,
> > --
> > Martin Schuster
> > Infineon Technologies IT-Services GmbH
> >
> > Tel: +43 5 1777 3517
> > [EMAIL PROTECTED]
> >
> > Postadresse:
> > Lakeside B05
> > 9020 Klagenfurt, Austria
> > FB: LG Klagenfurt, FN 246787y
> >
> > VISIT US AT http://www.infineon.com/austria
> >
>
>
> --
> Regards,
> Cordialement,
> Emmanuel Lécharny
> www.iktek.com
>

Reply via email to