Skip site navigation (1)Skip section navigation (2)
Date:      Wed,  6 Oct 1999 11:18:31 +0300 (EDT)
From:      "Valentin Nechayev" <nfb@nn.kiev.ua>
To:        freebsd-security@freebsd.org, kris@hub.freebsd.org
Subject:   Re: Long username/password
Message-ID:  <ABNNm-tS1U@nn.kiev.ua>
References:  <Pine.BSF.4.10.9910051426130.82242-100000@hub.freebsd.org>

next in thread | previous in thread | raw e-mail | index | archive | help
Kris Kennaway <kris@hub.freebsd.org> wrote:

> > If the DES libraries are already installed on a system, is there a
> > way to still use MD5 passwords by default?
>
> No. Unless you make a trivial change to passwd(1). Adding a command-line
> switch to do this would probably be a welcome feature.

Possibly, not command-line switch - this should be host policy.
I'd prefer something similar to /etc/malloc_options.
It is quite easy to read link.

This link must be used at least by pw(1) and passwd(1). Possible
definitions:

'M' - always create new crypts as MD5
'5' - create crypts for new accounts, or cases of empty password or '*'
      in pw_passwd field (in code - all cases of first two characters of
      crypt not in [A-Za-z0-9./] )

Is it acceptable?

P.S. There were some rumours about totally new libcrypt. What is the
state of it?

--
NN




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ABNNm-tS1U>