Date: Sat, 23 Jan 1999 21:34:58 -0800 From: Mike Smith <mike@smith.net.au> To: Peter Wemm <peter@netplex.com.au> Cc: Andrzej Bialecki <abial@nask.pl>, Mark Murray <mark@grondar.za>, Sheldon Hearn <axl@iafrica.com>, brandon@FreeBSD.org, committers@FreeBSD.org Subject: Re: New crypt code is not sucessful Message-ID: <199901240534.VAA00541@dingo.cdrom.com> In-Reply-To: Your message of "Sun, 24 Jan 1999 10:16:28 %2B0800." <199901240216.KAA01228@spinner.netplex.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
> Andrzej Bialecki wrote: > > On Sun, 24 Jan 1999, Peter Wemm wrote: > > > > > Speaking of rehashing.. I wonder what the chances of having the password > > > verification stages of login (or PAM) rehashing the passwords on a > > > successful login would be? > > > > If I'm not mistaken, it's only a matter of writing a PAM module that would > > do this. > > As I understand it, it has to be done by the module that actually asked for > and got the password. Adding an extra module in the sequence would (I > believe) mean that it would have to ask for the password again.. I think.. > It depends on whether there is any caching, and at what level the cache is > held. The auth token is cached, IIRC. You would want to be careful in applying such a module though, as it could do some fairly odd things in the wrong company. -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199901240534.VAA00541>