[Tickets #2865] NEW: Support for switching to a new password scheme

bugs@bugs.horde.org bugs at bugs.horde.org
Wed Oct 26 05:44:14 PDT 2005


DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.

Ticket URL: http://bugs.horde.org/ticket/?id=2865
-----------------------------------------------------------------------
 Ticket             | 2865
 Created By         | ulrich-horde at topfen.net
 Summary            | Support for switching to a new password scheme
 Queue              | Passwd
 Version            | HEAD
 State              | New
 Priority           | 2. Medium
 Type               | Enhancement
 Owners             | 
+New Attachment     | Driver.php.patch
-----------------------------------------------------------------------


ulrich-horde at topfen.net (2005-10-26 05:44) wrote:

Passwd's comparePassword() assumes that the old password is in the same
format the new one will be in (set in the configuration). This need not
always be true (in our case, we have a number of legacy CRYPT passwords but
we'd like the new ones to be SSHA).

The attached patch looks for {scheme} and uses this as the password
(encryption) scheme to pass to Auth::getCryptedPassword(). It also compares
the passwords with the scheme identification stripped off, as this makes the
scheme identification case-insensitive. This sould also fix the remaining
issue of bug #2708.




More information about the bugs mailing list