Comment 2 for bug 1567588

Posting this on the Evergreen and OpenSRF bugs:

Instead of changing the passwords themselves we could do something like <passwd sedtype="opensrf public"> and so long as the attribute was still there you could always find it, even if the password has already been changed.