[om-infra] sso - custom username support is working now

Robert Xu robxu9 at gmail.com
Wed Jan 20 12:41:45 EST 2016


Is it default? i.e. all password changes will be automatically hashed?
On 20 Jan 2016 7:25 a.m., "Jean-Claude Vanier" <jclvanier at gmail.com> wrote:

> ppolicy is installed and active. It is possible to encypt the password
> using phpldap admin.
> See "uid=jvanier,ou=People,dc=openmandriva,dc=org" and export this entry.
>
> 2016-01-19 19:44 GMT+01:00 Robert Xu <robxu9 at gmail.com>:
> >
> > On 19 Jan 2016 13:19, "Anurag Bhandari" <ab at anuragbhandari.com> wrote:
> >>
> >>
> >> On 19-Jan-2016 1:26 pm, "Robert Xu" <robxu9 at gmail.com> wrote:
> >> >
> >> > Okay, so it's a good thing I caught this - LDAP is storing passwords
> >> > in clear text. That is unacceptable.
> >>
> >> Whoops! That's outrageous. Totally unacceptable.
> >>
> >> >
> >> > Can someone figure out a way to make LDAP store them hashed? We cannot
> >> > proceed with passwords in clear text.
> >>
> >> I can check into this. Where's the data store for LDAP? Also, did you
> >> check if there's a setting in lemonldap to enable encrypted passwords.
> At
> >> any rate, such a setting should be default.
> >
> > In Ruby. There's no setting in LemonLDAP, so we probably forgot to enable
> > some sort of setting in LDAP itself - ppolicy maybe?
> >
> >
> > _______________________________________________
> > OM-Infra mailing list
> > OM-Infra at ml.openmandriva.org
> > http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
> >
>
> _______________________________________________
> OM-Infra mailing list
> OM-Infra at ml.openmandriva.org
> http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://ml.openmandriva.org/mailman/private/om-infra_ml.openmandriva.org/attachments/20160120/98443e9d/attachment.html>


More information about the OM-Infra mailing list