decrypting the user password
Chris Hecker
checker at d6.com
Wed Feb 13 01:15:15 EST 2013
It's one-way hashed. You don't want to store plaintext passwords
anywhere, or even passwords encrypted with a two-way algorithm, because
people tend to use the same passwords in multiple places so in addition
to comprimising your site, you also hose all your users elsewhere.
Chris
On 2013-02-12 20:53, Asmaa Ahmed wrote:
>
> Hello,
> I am having kerberos MIT integrated to LDAP as a backend which is good so far.The problem that I have some applications doesn't support Kerberos to restore the user credentials.I wonder if I can decrypt the password from Kerberos server manually to have it in a plaintext, so I can do some password sync between Kerberos/ldap server and the application DB!!!My target is having a script or so to get all the original kerberos principals passwords.
> Thanks.
> ________________________________________________
> Kerberos mailing list Kerberos at mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
More information about the Kerberos
mailing list