On Mon, Feb 25, 2019 at 05:14:50PM +0000, Stuart Henderson wrote: > On 2019/02/25 09:13, Adam Thompson wrote: > > > Use vipw to put 13 * in the password field > > > > > > From passwd(5) > > > [...] > > > authentication, conventionally have 13 asterisks in the password field. > > > > Thank you! Now that I know what I'm looking for, I can see the relevant > > code in security(8), too. > > > > I wonder if there's a way for ports to do that for me while calling useradd? > > Another rabbit hole to go down. > > > > Thanks again, > > -Adam > > > > It normally does already. Do you have an unusual "password" line in > /etc/usermgmt.conf?
I think the user(8) behavior changed in that regard in user.c rev 1.112 https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/user/user.c.diff?r1=1.111&r2=1.112 @@ -1130,16 +1082,8 @@ warnx("Warning: home directory `%s' doesn't exist, and -m was" " not specified", home); } - if (up->u_password != NULL && valid_password_length(up->u_password)) { - (void) strlcpy(password, up->u_password, sizeof(password)); - } else { - (void) memset(password, '*', DES_Len); - password[DES_Len] = 0; - if (up->u_password != NULL) { - warnx("Password `%s' is invalid: setting it to `%s'", - up->u_password, password); - } - } + (void) strlcpy(password, up->u_password ? up->u_password : "*", + sizeof(password)); cc = snprintf(buf, sizeof(buf), "%s:%s:%u:%u:%s:%lld:%lld:%s:%s:%s\n", login_name, password,
