Advertising
- Anonym
- Tuesday, March 4th, 2008 at 11:26:02am UTC
- -- SSH LOGIN - ENTER USERNAME --
- Mar 4 13:11:26 PDC slapd[4206]: conn=12 op=1 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uid=spiekey))"
- Mar 4 13:11:26 PDC slapd[4206]: conn=12 op=1 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- -> Look in base="dc=example,dc=net" for a Object that matches the filter="(&(objectClass=posixAccount)(uid=spiekey))
- => Now we have uid, userPassword (Hash), uidNumber, gidNumber, etc... from the OpenLDAP Database
- -- SSH LOGIN - ASK FOR PASSWORD --
- Mar 4 13:11:32 PDC slapd[4206]: conn=13 op=1 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(uid=spiekey)"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=2 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uid=spiekey))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=3 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixGroup)(|(memberUid=spiekey)(uniqueMember=uid=spiekey,ou=users,dc=example,dc=net)))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=3 SRCH attr=gidNumber
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=4 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uid=spiekey))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=4 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=5 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uidNumber=10000))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=5 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=6 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uid=spiekey))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=12 op=6 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- Mar 4 13:11:32 PDC slapd[4206]: conn=14 op=1 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uidNumber=10000))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=14 op=1 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- Mar 4 13:11:32 PDC slapd[4206]: conn=15 op=1 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uidNumber=10000))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=15 op=1 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
- Mar 4 13:11:32 PDC slapd[4206]: conn=15 op=2 SRCH base="dc=example,dc=net" scope=2 deref=0 filter="(&(objectClass=posixGroup)(gidNumber=513))"
- Mar 4 13:11:32 PDC slapd[4206]: conn=15 op=2 SRCH attr=cn userPassword memberUid uniqueMember gidNumber
- => Now we have the GroupID, Groupname, etc... from the OpenLDAP Database
- Compare <Entered Userpassword-Hash> with <userPassword (Hash)> from OpenLDAP Database
- If it matches we are in!
advertising
Update the Post
Either update this post and resubmit it with changes, or make a new post.
You may also comment on this post.
Please note that information posted here will not expire by default. If you do not want it to expire, please set the expiry time above. If it is set to expire, web search engines will not be allowed to index it prior to it expiring. Items that are not marked to expire will be indexable by search engines. Be careful with your passwords. All illegal activities will be reported and any information will be handed over to the authorities, so be good.