From owner-freebsd-security  Thu Jun  7 13:32:22 2001
Delivered-To: freebsd-security@freebsd.org
Received: from slis-two.lis.fsu.edu (slis-two.lis.fsu.edu [128.186.72.102])
	by hub.freebsd.org (Postfix) with ESMTP id 1490437B409
	for <freebsd-security@FreeBSD.ORG>; Thu,  7 Jun 2001 13:32:14 -0700 (PDT)
	(envelope-from david@slis-two.lis.fsu.edu)
Received: from localhost (david@localhost)
	by slis-two.lis.fsu.edu (8.11.1/8.11.1) with ESMTP id f57KXcb65568;
	Thu, 7 Jun 2001 16:33:38 -0400 (EDT)
	(envelope-from david@slis-two.lis.fsu.edu)
Date: Thu, 7 Jun 2001 16:33:38 -0400 (EDT)
From: David Miner <david@slis-two.lis.fsu.edu>
To: "Karsten W. Rohrbach" <karsten@rohrbach.de>
Cc: Ralph Huntington <rjh@mohawk.net>,
	edwin chan <huacheng@public.guangzhou.gd.cn>,
	Olivier Nicole <Olivier.Nicole@ait.ac.th>,
	<freebsd-security@FreeBSD.ORG>
Subject: Re: Encrypted passwords
In-Reply-To: <20010607220227.W59617@mail.webmonster.de>
Message-ID: <Pine.BSF.4.30_heb2.09.0106071629460.65521-100000@slis-two.lis.fsu.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Thu, 7 Jun 2001, Karsten W. Rohrbach wrote:

> correct me if i am just stupid, but i don't get the point
>   echo -n passW0Rd | pw -u testuser -h 1
> sets the password of "testuser" to "passW0Rd", soring it in the auth
> system you prefer in encrypted form. am i missing something?
>
> /k
>
No, I don't think you have missed the point.  Using echo and piping it
into pw would work.  I am trying read the cleartext password from a file
and, since I haven't figured out how the pw file descriptor works, encrypt
it and use the chpass utility to get it into /etc/passwd.  Because I have
to do this 50 accounts at a time.  It looks like it encrypts correctly,
but the user cannot log in with that password.  So something must be wrong
with the encryption system or the way I have put the pieces together.

David
---------------------------------------------------------------------
David R. Miner                                   miner@lis.fsu.edu
Systems Integrator                               voice: 850-644-8107
School of Information Studies                    fax:   850-644-6253
Florida State University
Tallahassee, FL  32306-2100



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message