From 8ce68659d948d192bea088e782e08a100a8e0724 Mon Sep 17 00:00:00 2001
From: Paul <paul@zom.bi>
Date: Sun, 10 Sep 2017 09:55:17 +0200
Subject: [PATCH] Use better password hashing by default

---
 fixtures/config.ldif | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/fixtures/config.ldif b/fixtures/config.ldif
index 1c086b6..10f4a25 100644
--- a/fixtures/config.ldif
+++ b/fixtures/config.ldif
@@ -11,6 +11,9 @@ olcLogLevel: none
 # The tool-threads parameter sets the actual amount of cpu's that is used
 # for indexing.
 olcToolThreads: 1
+# Define used format for CRYPT algorithm
+# (SHA-512 16-char-salt 50000 rounds)
+olcPasswordCryptSaltFormat: $6$rounds=50000$%.16s
 
 # Frontend settings
 dn: olcDatabase={-1}frontend,cn=config
@@ -24,6 +27,8 @@ olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,c
 # Allow unauthenticated read access for schema and base DN autodiscovery
 olcAccess: {1}to dn.exact="" by * read
 olcAccess: {2}to dn.base="cn=Subschema" by * read
+# Define CRYPT as preferred algorighm for password hashing
+olcPasswordHash: {CRYPT}
 
 # Config db settings
 dn: olcDatabase=config,cn=config