From owner-freebsd-security Tue Jun 15 17: 5:58 1999 Delivered-To: freebsd-security@freebsd.org Received: from adelphi.physics.adelaide.edu.au (adelphi.physics.adelaide.edu.au [129.127.36.247]) by hub.freebsd.org (Postfix) with ESMTP id 5FCCC1524D for ; Tue, 15 Jun 1999 17:05:54 -0700 (PDT) (envelope-from kkennawa@physics.adelaide.edu.au) Received: from bragg (bragg [129.127.36.34]) by adelphi.physics.adelaide.edu.au (8.8.8/8.8.8/UofA-1.5) with SMTP id JAA01629; Wed, 16 Jun 1999 09:35:51 +0930 (CST) Received: from localhost by bragg; (5.65/1.1.8.2/05Aug95-0227PM) id AA12455; Wed, 16 Jun 1999 09:36:59 +0930 Date: Wed, 16 Jun 1999 09:36:59 +0930 (CST) From: Kris Kennaway X-Sender: kkennawa@bragg To: Evren Yurtesen Cc: Holtor , freebsd-security@freebsd.org Subject: Re: DES & MD5? In-Reply-To: <37667C35.68E9E594@ispro.net.tr> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 15 Jun 1999, Evren Yurtesen wrote: > I think when you use MD5 or DES you can still have different kind of > passwords in your password file. You can. crypt() checks whether it's being passed a salt of the form $1$...$, and if so, passes it to crypt_md5(), otherwise considers it as a DES salt and sends it to crypt_des() (if DES support is compiled in). So you can mix and match any passwords your crypt() knows how to parse. The only problem is that standrd FreeBSD doesn't have a way to select which password scheme you want: if you install the DES sources, you get DES passwords, otherwise MD5, for your new passwords. Kris ----- "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." -- Unknown To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message