[389-devel] Please review (take 3): [Bug 653007] db2ldif export of clear text passwords lacks storage scheme
Noriko Hosoi
nhosoi at redhat.com
Thu Jan 6 22:20:06 UTC 2011
https://bugzilla.redhat.com/show_bug.cgi?id=653007
https://bugzilla.redhat.com/attachment.cgi?id=472145&action=diff
https://bugzilla.redhat.com/attachment.cgi?id=472145&action=edit
Discussed with Nathan and removed the "passwordStorageScheme" check. My
previous proposals added "{CLEAR}" only when the global passwordStorageScheme
was "clear" and passwords were not hashed. This did not cover some cases such
as the global passwordStorageScheme was not clear and a fine grained password
policy was.
This revised patch checks every userPassword value regardless of the password
scheme and put "{CLEAR}" if the value is not hashed.
More information about the 389-devel
mailing list