Code Comments

Programming Forum and web based access to our favorite programming groups.
For Programmers: Free Programming Magazines | New: Database administration forum
Registration is free! Edit your profileCalendarFind other membersFrequently Asked QuestionsSearch -> 
Code Comments > PERL > LDAP >

Newbie Question: How to check passwords stored in LDAP


Post New Thread











Thread
Author
Newbie Question: How to check passwords stored in LDAP
Hi there,

I'm a Newbie to ldap and perl ldap.

I want to force a user to log in into my(perl) application using ldap
authentication.
I succeeded doing a search on all persons in our LDAP-Directory.

My question is:

How can I check the password the user gave to my application against the
password stored in the LDAP-Directory?
Concerning security issues:
* (Off topic) Whats the best way of getting a password in a ENCODED way
into my perl app?
* Do I get an encoded or decoded password from LDAP? I would prefer if I
sent my encoded passwords to LDAP, LDAP decodes the sent password and
compares my password to the stored password, and just tells me, whether
the sent password is valid ...

Any help welcome ...

Johannes

Report this thread to moderator Post Follow-up to this message
Old Post
Johannes Kilian
04-06-05 06:00 PM

Re: Newbie Question: How to check passwords stored in LDAP
On 6/4/05 9:48 am, Johannes Kilian <jok@vitronic.com> wrote:

> Hi there,
>
> I'm a Newbie to ldap and perl ldap.
>
> I want to force a user to log in into my(perl) application using ldap
> authentication.
> I succeeded doing a search on all persons in our LDAP-Directory.
>
> My question is:
>
> How can I check the password the user gave to my application against the
> password stored in the LDAP-Directory?

You should ask the directory server to check the password, either by doing a
bind operation as the user, or a compare operation on the user's entry.

> Concerning security issues:
> * (Off topic) Whats the best way of getting a password in a ENCODED way
> into my perl app?

What do you mean by encoded?

> * Do I get an encoded or decoded password from LDAP? I would prefer if I
> sent my encoded passwords to LDAP, LDAP decodes the sent password and
> compares my password to the stored password, and just tells me, whether
> the sent password is valid ...

Does your server store hashed passwords (eg {md5}, {ssha})? If it does, then
because hashing is a one-way algorithm you will only ever be able to
retrieve the hashed value. Assuming you have permissions to read the
appropriate password attribute of course... (You do not usually have to have
read permission on a password for binds and compares to work.)

> Any help welcome ...
>
> Johannes
>
>
>
>

Cheers,

Chris

Report this thread to moderator Post Follow-up to this message
Old Post
Chris Ridd
04-06-05 06:00 PM

Sponsored Links



Last Thread Next Thread Next
Search this forum -> 
Post New Thread

LDAP archive

Show a Printable Version Send to friend Email This Page to Someone! subscribe to this thread Receive updates to this thread
Computer Consultants
Programming Jobs
Visual Basic Controls
SQL Server Programming
Webservices
Java Security
Visual Studio
C# Programming
Visual J++
Software engineering
Open source Software
Perl Programming
PHP Programming
ASP Programming
ASP .NET Programming
Visual Basic Programming
Windows Scripting Host
Java Programming
Java Help
Java Beans
VBScript
Cobol
MAC Applications
Unix Programming
Forum Jump:
All times are GMT. The time now is 07:00 PM.

 
Free MCSE Braindumps | Real Estate Topics
Programming forum archive

Copyrights CodeComments.com 2004 - 2006

Powered by vBulletin Copyright 2000-2006 Jelsoft Enterprises Limited.