Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-1064

Admin password cannot be hashed

Watch issueLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Fixed
    • None
    • 1.5.2
    • core
    • None
    • Any

    Description

      The administrator password is present within the server.xml and within the system partition. This is the case to require authentication to startup the server with access to the data therein. The problem is you cannot maintain the admin password in this file in hashed form. When authenticating it will get double hashed. So either on startup and on internal admin authentication you bypass hashing and only do it through the protocol or we need to force keeping the admin password in clear text.

      This is not such a good thing IMO. Something must be done for this.

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            akarasulu Alex Karasulu
            akarasulu Alex Karasulu
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment