Project

General

Profile

Actions

Defect #8514

closed

Custom Password storing break pam_mysql

Added by Daniel Varga over 13 years ago. Updated almost 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Third-party libraries
Target version:
-
Start date:
2011-06-03
Due date:
% Done:

0%

Estimated time:
Resolution:
Wont fix
Affected version:

Description

With this version authentication against redmine's user db is not possible.

The hashed password is stored in the following form: SHA1(salt + SHA1(password))

This is from users.rb comment

The pam_mysql's algorithm doesn't support salt and doesn't use the algorithm above to retrieve passwords.

Detailed forum post:
http://www.redmine.org/boards/2/topics/24383


Related issues

Related to Redmine - Feature #7410: Add salt to user passwordsClosed2011-01-22

Actions
Actions

Also available in: Atom PDF