>> Hi. >> >> >>> User is able to login with password 12345678 or 12345678dasx324 or >>> 12345678u and so on . >>> >>> Is the password lenght a compile time option or a systemrestrication ? >>> >> >> I guess it as a system restriction, but that's a guess and I haven't >> dig our code base actually. >> >> We use qmail-ldap on Solaris 10 and users have cleartext and crypt >> passwords in ladp. But both can have more than 10 characters and on >> both an error is given if you try to expand the password with more characters. >> >> So on our Solaris based qmail-ldap your example is not running. >> >> Greets >> Phil. >> >> >> >> >Password length is limited to 128 char by the rfc RFC2256/2307 > >olcAttributeTypes: ( 2.5.4.35 NAME 'userPassword' > DESC 'RFC2256/2307: password of user' > EQUALITY octetStringMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} ) > >I found this entry on oracle which confirmed my suspicisions: >http://download.oracle.com/docs/cd/B14099_19/idmanage.1012/b15883/schem a_attrs002.htm#BABHECDD > >Crypt passwords are longer than the original text, so the 128 limit is for the crpyt value not the original value. - I think you could edit your schema to >change the length.
Thanks all for the infos !! MD5 is working - no problem Will check Solution from Russ in a Test Enviroment ( maybe i don't have to change the user accounts ) Kind regards Stefan