[Freeipa-devel] [PATCH] #412 Make always use of special salt type
Rob Crittenden
rcritten at redhat.com
Thu Oct 28 21:14:54 UTC 2010
Simo Sorce wrote:
>
> By using the special salt type and generating a random salt we can
> rename user's principal name without invalidating their password.
>
> This works only if pre-authentication is required, but that's how we
> configure our server anyway.
>
> This patch does not disallow "normal" salts, but if used they will
> prevent renames from working correctly.
> By default special is used.
>
> Simo.
>
ack
More information about the Freeipa-devel
mailing list