Re: adduser not using md5 password format
On Mon, Nov 19, 2001 at 09:37:12PM +0100, Gerhard Sittig wrote: On Sun, Nov 18, 2001 at 17:07 -0500, Matthew Emmerton wrote: I am running stable branch cvsupped Mon Oct 22 02:53:56 EDT 2001. I added a user and noticed that it is not using the md5 password format. It has been discussed before, see Date: Fri, 3 Aug 2001 11:10:05 +0300 From: Vadim Gelesev [EMAIL PROTECTED] To: Holtor [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: md5? Message-ID: [EMAIL PROTECTED] You might want to open a PR with a reformatted (not this falsely autoindented:) patch ... Or you might want to obey(id?) the fact that not everybody can or wants to use MD5 and thus - make the current behaviour (DES) the default for adduser and - switch to MD5 based the admin's wish when adduser got invoked or configured (i.e. make MD5 support optional) How about PR bin/24953? Can someone review suggested patch? (It is already 6 month is PR database... :-( ). Best Wishes, Serg N. Voronkov, Sibitex, JSC. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message
adduser not using md5 password format
I am running stable branch cvsupped Mon Oct 22 02:53:56 EDT 2001. I added a user and noticed that it is not using the md5 password format. sandi:54wMRYJk1ERRs:1017:1017::0:0:Sandi mailbox:/home/sandi:/sbin/nologin I have not modified /etc/login.conf and it is whatever coming from cvsup. This is the rcs id from login.conf # $FreeBSD: src/etc/login.conf,v 1.34.2.4 2001/10/10 17:02:58 obrien Exp $ I tried to rebuild the db using cap_mkdb login.conf, logout/login of root but adduser is still using des format. zeus:etc# ll login.* -rw-r--r-- 1 root wheel 1924 May 11 2001 login.access -rw-r--r-- 1 root wheel 6454 Oct 11 23:30 login.conf -rw-r--r-- 1 root wheel 32768 Nov 18 14:07 login.conf.db Anyone else has the same problem or what did I miss? -- Peter \\|// (o o) +-oOOo-(_)-oOOo-+ EMail : mailto:pccb(at)yahoo(dot)com PGP Key: http://www.pchiu.com/pgpkey.txt PGP Fingerprint: 5167 897D A043 423E 9266 E67F 3A13 0394 B893 A931 +---+ transient bus protocol violation To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message
Re: adduser not using md5 password format
I am running stable branch cvsupped Mon Oct 22 02:53:56 EDT 2001. I added a user and noticed that it is not using the md5 password format. The adduser perl script uses Perl's crypt() function, which is implemented via crypt(3). Since the salt that is provided to the crypt() call doesn't explicitly specify which algorithm to use (man crypt(3) for details), the crypt() function call defaults to DES. If you use passwd() to change the user's password after creating the account, the new password will be md5, or whatever you've specified in /etc/login.conf. Could you open a PR for this bug? adduser should use the password format in /etc/login.conf. -- Matt Emmerton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message
Re: adduser not using md5 password format
I am running stable branch cvsupped Mon Oct 22 02:53:56 EDT 2001. I added a user and noticed that it is not using the md5 password format. The adduser perl script uses Perl's crypt() function, which is implemented via crypt(3). Since the salt that is provided to the crypt() call doesn't explicitly specify which algorithm to use (man crypt(3) for details), the crypt() function call defaults to DES. If you use passwd() to change the user's password after creating the account, the new password will be md5, or whatever you've specified in /etc/login.conf. Oops. The correct place is /etc/auth.conf in 4.4-REL and later. -- Matt Emmerton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message