Date: Sun, 09 Sep 2007 00:16:20 -0300 From: =?ISO-8859-1?Q?Jo=E3o_Carlos_Mendes_Lu=EDs?= <jonny@jonny.eng.br> To: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> Cc: questions@freebsd.org Subject: Re: Dumb question about DES/MD5 in /etc/master.passwd Message-ID: <46E36584.4030209@jonny.eng.br> In-Reply-To: <44zlzxnrge.fsf@Lowell-Desk.lan> References: <46E0A950.8010502@jonny.eng.br> <44zlzxnrge.fsf@Lowell-Desk.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
Lowell Gilbert wrote:
> João Carlos Mendes Luís <jonny@jonny.eng.br> writes:
>
>
>> This question must be really dumb, but I cannot find its answer.
>>
>> In a somewhat recently updated RELENG_6 FreeBSD, whenever I run the
>> program /usr/bin/passwd to change an users password, it encrypts the
>> password using DES. I have already configured /etc/login.conf for
>> MD5, but it still goes with DES:
>>
>> *$ grep passwd /etc/login.conf
>> :passwd_format=md5:\
>> # :passwd_format=des:\
>> $*
>>
>> What could I be doing wrong?
>>
>> If that matters, this system has been receiving system and /etc
>> upgrades since Sep/2003. Maybe some old configuration has been left
>> around...
>>
>
> I'm a little too lazy to confirm if this is still the case with the
> openpam libraries, but it used to be the case that the passwd_format
> variable was not consulted for changing passwords on existing
> accounts; the same format was always used. passwd_format would be
> obeyed if there were *no* password on the account (in particular, the
> first time a password was assigned).
>
That was not the case. An account with MD5 password was turning into DES.
The answer has been given by the previous message, and it was really
dumb as I supposed: I did not run cap_mkdb! :-(
Jonny
--
João Carlos Mendes Luís - Networking Engineer - jonny@jonny.eng.br
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?46E36584.4030209>