Hi, On the OpenLDAP homepages are a collection of tools that can be used to import existing passwd (and other) data sources into LDAP. I have done this on my ex-NIS-server, and am now using LDAP on all the other servers to authenticate. The passwords were imported just fine, and are working just fine. Took me a while to find those tools though; look here: http://www.padl.com/OSS/MigrationTools.html You might have to hack the scripts slightly to have them run on FreeBSD, but it took me about 2 minutes to do so. Amazing how easy it was after having tried myself for the last 2 days... ;) Good luck! /Eirik On 13. Nov 2004, at 17:42, Ivan Voras wrote: > The Handbook and crypt(3) say passwords in master.passwd are MD5 > hashes if they start with $1$, for example: > > $1$DP.s8oCc$VJo0/026/S5ng6HlD1Sz8/ > > the format is $1$salt$rest. I have several questions: > > How are the values encoded? This looks something like base64. > > Is it possible to actually verify the password against this format > using only a bare implementation of the md5 algorithm? > > Actually, the reason for these questions is that I'm considering using > LDAP authentication on a machine with lots of users and I'm wondering > if existing passwd information could be transported to LDAP. Any > experiences/docs on this? > > Thanks! > _______________________________________________ > freebsd-current_at_freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to > "freebsd-current-unsubscribe_at_freebsd.org" > > > Hi, On the OpenLDAP homepages are a collection of tools that can be used to import existing passwd (and other) data sources into LDAP. I have done this on my ex-NIS-server, and am now using LDAP on all the other servers to authenticate. The passwords were imported just fine, and are working just fine. Took me a while to find those tools though; look here: http://www.padl.com/OSS/MigrationTools.html You might have to hack the scripts slightly to have them run on FreeBSD, but it took me about 2 minutes to do so. Amazing how easy it was after having tried myself for the last 2 days... ;) Good luck! /Eirik On 13. Nov 2004, at 17:42, Ivan Voras wrote: The Handbook and crypt(3) say passwords in master.passwd are MD5 hashes if they start with $1$, for example: $1$DP.s8oCc$VJo0/026/S5ng6HlD1Sz8/ the format is $1$salt$rest. I have several questions: How are the values encoded? This looks something like base64. Is it possible to actually verify the password against this format using only a bare implementation of the md5 algorithm? Actually, the reason for these questions is that I'm considering using LDAP authentication on a machine with lots of users and I'm wondering if existing passwd information could be transported to LDAP. Any experiences/docs on this? Thanks! _______________________________________________ freebsd-current_at_freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to "freebsd-current-unsubscribe_at_freebsd.org"Received on Sun Nov 14 2004 - 08:07:46 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:22 UTC