Michael Wirz, wrote:
>
> From: Mike Richardson <[EMAIL PROTECTED]>
> Reply-to: [EMAIL PROTECTED]
> To: Michael Wirz <[EMAIL PROTECTED]>
> Subject: Re: Setting up Dialmon
> Date: Tue, 8 Dec 1998 08:32:47 +0000
>
> <snip>
>
> Just a though, before I start scratching my head a lot .... are you
> using shadow passwords?
>
> Sorry, Mike, it seems to me that I am really a greenhorn with these
> things. What are shadow passwords?
> And let me guess: dialmon doesn�t work with those?
> I configured the users using the configuration tool of my linux
> distribution. It�s called S.u.S.E. Linux 5.2 (a german Distribution)
> an is based on slackware linux, I think.
No, it's based on RedHat, though they take more pains to make sure it is
stable and secure. Including the use of shadow passwords. (And, no,
you don't have a choice on this. Which annoys me a little, but not
nearly so much as RedHat's not giving you a choice the other way. At
least, I can't recall being given a choice, and since my RH5.1 install
doesn't have them, I'd assume it didn't.)
On the bright side, if you change /etc/rc.config and /etc/login.defs,
you aren't limited to the typical 8 character passwords; I've used
entire sentances as passwords. Not to mention there's about 15-20 other
places where I ran into greater security on the SuSE installation. They
do admittedly both use sendmail...
On the down side... I'll see if I can get dialmon working this weekend.
I don't think it looks good, though. Um, you might be able to fake it
out by putting actual passwords in the second field of /etc/passwd. If
so, you'd not need to have the *same* password as the account's login
password, but it'd probably need to be encrypted the same way. (Set a
password, snag it from /etc/shadow, and put it into /etc/passwd. You
could then change the account password again, and dialmon wouldn't
notice. If dialmon would work at all.) I don't know if that'd work,
it's just my first thought.
Ed
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
