>> Hi.
>>
>>
>>> User is able to login with password 12345678 or 12345678dasx324 or
>>> 12345678u and so on .
>>>
>>> Is the password lenght a compile time option or a systemrestrication
?
>>>
>>
>> I guess it as a system restriction, but that's a guess and I haven't
>> dig our code base actually.
>>
>> We use qmail-ldap on Solaris 10 and users have cleartext and crypt
>> passwords in ladp. But both can have more than 10 characters and on
>> both an error is given if you try to expand the password with more
characters.
>>
>> So on our Solaris based qmail-ldap your example is not running.
>>
>> Greets
>> Phil.
>>
>>
>>
>>
>Password length is limited to 128 char by the rfc RFC2256/2307
>
>olcAttributeTypes: ( 2.5.4.35 NAME 'userPassword'
> DESC 'RFC2256/2307: password of user'
> EQUALITY octetStringMatch
> SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )
>
>I found this entry on oracle which confirmed my suspicisions:
>http://download.oracle.com/docs/cd/B14099_19/idmanage.1012/b15883/schem
a_attrs002.htm#BABHECDD
>
>Crypt passwords are longer than the original text, so the 128 limit is
for the crpyt value not the original value. - I think you could edit
your schema to
>change the length.
Thanks all for the infos !!
MD5 is working - no problem
Will check Solution from Russ in a Test Enviroment ( maybe i don't have
to change the user accounts )
Kind regards
Stefan
