From owner-freebsd-security Sun Jan 6 9:55:23 2002 Delivered-To: freebsd-security@freebsd.org Received: from raven.robbins.dropbear.id.au (003.a.003.mel.iprimus.net.au [203.134.172.3]) by hub.freebsd.org (Postfix) with ESMTP id 3344E37B402 for ; Sun, 6 Jan 2002 09:55:18 -0800 (PST) Received: (from tim@localhost) by raven.robbins.dropbear.id.au (8.11.6/8.11.6) id g06Hrq452139 for security@FreeBSD.ORG; Mon, 7 Jan 2002 04:53:52 +1100 (EST) (envelope-from tim) Date: Mon, 7 Jan 2002 04:53:51 +1100 From: "Tim J. Robbins" To: security@FreeBSD.ORG Subject: Re: Help with DES > MD5 Message-ID: <20020107045351.A52056@raven.robbins.dropbear.id.au> References: <200201060228.g062SmL41195@tick.sc.omation.com> <20020106122408.K4293-100000@http.descrypt.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020106122408.K4293-100000@http.descrypt.com>; from beneliet@http.descrypt.com on Sun, Jan 06, 2002 at 12:27:46PM -0500 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Adding the :passwd_format=md5: capability to /etc/login.conf in the right class works as it should (I just checked then). Next time a user changes their password, it is converted to the new encryption format. Since you're using DES (not the default), it should be as simple as replacing :passwd_format=des: with :passwd_format=md5:. Check that you've changed the passwd_format capability for the class the users are in. Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message