Project

General

Profile

Actions

Bug #444

closed

Apache's htpasswd hashes

Added by Anonymous over 18 years ago. Updated over 16 years ago.

Status:
Fixed
Priority:
Normal
Category:
core
Target version:
-
ASK QUESTIONS IN Forums:

Description

In order to convert existing Apache installations with lots and lots of existing htpasswd-based users, it would be convenient to support Apache's htpasswd format generated by -m and -s:


% htpasswd -nbm username password
username:$apr1$mpXPC...$NxRSyyOSoVSE2KvYWB2M/.

% htpasswd -nbs username password
username:{SHA}W6ph5Mm5Pz8GgiULbPgzG37mj9g=

-- lapo


Files

lighttpd-apr1.patch (6.1 KB) lighttpd-apr1.patch ripped apr_md5_encode from apr-util. implements $apr1$ hashing. tested, compiles works -- Elan Ruusamäe <glen Anonymous, 2006-07-25 18:16
Actions #1

Updated by Anonymous over 17 years ago

one can take look at {{{apr_md5_encode()}}} from:
http://svn.apache.org/viewvc/apr/apr-util/trunk/crypto/apr_md5.c?revision=165137&view=markup

lighttpd already has source:branches/lighttpd-merge-1.4.x/src/md5.c which is quite similar.

-- Elan Ruusamäe <glen

Actions #2

Updated by Anonymous over 17 years ago

here's also patch for 1.4.12:

http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/lighttpd-apr1.patch?rev=1.2

-- Elan Ruusamäe <glen

Actions #3

Updated by jan over 16 years ago

  • Status changed from New to Fixed
  • Resolution set to fixed

r1369 seems to have applied this patch already.

Actions

Also available in: Atom