Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 27 Aug 2001 02:15:22 -0500
From:      "default" <default013subscriptions@hotmail.com>
To:        <freebsd-questions@freebsd.org>, <freebsd-security@freebsd.org>
Subject:   Logins without full password!
Message-ID:  <OE46dVzDpubxcbz37cf000049f8@hotmail.com>

next in thread | raw e-mail | index | archive | help
Hi,

I just noticed that on one of my FreeBSD machines, one is able to login via
any means by typing in only the first 8 or so characters of the password.
You can also type the first 8 characters and anything else after that, for
example if the password were password, one could type: 'passwordxxxxxxx' and
be able to login!

I'm not too worried as this is only a test machine that I keep on my
internal network, however, I would like to know how it works...

Is this normal? How does one disable this?

Thanks,

Jordan

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OE46dVzDpubxcbz37cf000049f8>