[Tickets #2863] Corrected handling of {SSHA} and {SMD5} salt
bugs@bugs.horde.org
bugs at bugs.horde.org
Wed Oct 26 05:43:20 PDT 2005
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/?id=2863
-----------------------------------------------------------------------
Ticket | 2863
Updated By | Jan Schneider <jan at horde.org>
Summary | Corrected handling of {SSHA} and {SMD5} salt
Queue | Horde Framework Packages
Version | FRAMEWORK_3
-State | Unconfirmed
+State | Feedback
Priority | 2. Medium
Type | Bug
Owners |
-----------------------------------------------------------------------
Jan Schneider <jan at horde.org> (2005-10-26 05:43) wrote:
> +) The format for both schemes is (in pseudo-code)
> base64_encode(hash(password . salt) . salt). getSalt() did return the
> the still encoded value when $seed was set, and a raw value when
> generating a new one.
But this is only true for LDAP servers storing the hashes in the tree,
right? Auth is not only for LDAP servers.
More information about the bugs
mailing list