From owner-freebsd-security Thu Nov 30 12:26:51 2000 Delivered-To: freebsd-security@freebsd.org Received: from beamail.beasys.com (unknown [63.96.163.38]) by hub.freebsd.org (Postfix) with ESMTP id 0483B37B400 for ; Thu, 30 Nov 2000 12:26:48 -0800 (PST) Received: from san-francisco.beasys.com (san-francisco.beasys.com [192.168.9.10]) by beamail.beasys.com (8.9.1b+Sun/8.9.1) with ESMTP id MAA29168 for ; Thu, 30 Nov 2000 12:26:47 -0800 (PST) Received: from ashbury.weblogic.com (ashbury.beasys.com [172.17.8.3]) by san-francisco.beasys.com (8.9.3+Sun/8.9.1) with ESMTP id MAA17928; Thu, 30 Nov 2000 12:26:47 -0800 (PST) Received: from beasys.com ([192.168.53.2]) by ashbury.weblogic.com (Post.Office MTA v3.5.3 release 223 ID# 0-53833U200L200S0V35) with ESMTP id com; Thu, 30 Nov 2000 12:46:43 -0800 Message-ID: <3A26B705.BB9C836E@beasys.com> Date: Thu, 30 Nov 2000 13:22:29 -0700 From: garya@bea.com (Gary Aitken) Organization: BEA WebXpress X-Mailer: Mozilla 4.75 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: Chuck Rock Cc: freebsd-security@freebsd.org Subject: Re: /etc/passwd upgrade References: <003e01c05aff$21333be0$1805010a@epconline.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Chuck Rock wrote: > > We've upgraded from 2.2.8 to 3.2 and will be soon 4.2 by just copying the > passwd files over. > > There is a mix of 3DES and MD5 passwords in the passwd file as 2.2.8 was > configured with 3DES and the 3.2 is configrued with MD5. All new users get > MD5 by default, but the users with 3DES password still work, and won't get > MD5 unless they change their password. > > We've had no problems whatsoever with this, but all the home directories and > so forth have to match the passwd file. > > Is the 128bit ecryption mentioned the MD5 passwords, or is this a security > feature we havent used on our system that would make this copying of passwd > files not work? Thanks. I copied the appropriate entries from the old (2.1) file and it appears to be working, so you should be ok. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message