Date: Fri, 17 May 2002 10:24:17 -0700 (PDT) From: Paul Herman <pherman@frenchfries.net> To: =?iso-8859-1?Q?Erik_Paulsen_Sk=E5lerud?= <erik@pentadon.com> Subject: RE: How secure is a password and how many characters does it allow? Message-ID: <20020517093415.L934-100000@mammoth.eat.frenchfries.net> In-Reply-To: <200205171632.g4HGWTJ17941@tick.sc.omation.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 17 May 2002, it was written: > You say that adduser uses DES, while the system defaults to MD5. > How do you add users then? Using pw useradd etc? Yeah, that works. passwd(1) works too. You can also put: crypt_default = md5 into /etc/auth.conf, but this is not the same as changing passwd_format in /etc/login.conf. This will force *all* programs that expect a DES hash from crypt() to get an MD5 hash. This is generally not a problem nowadays (?), but you may have some old legacy software on your system that still need this. Be aware of this if you change /etc/auth.conf. If you're not generating your own salts, and just want to keep it simple, the login_setcryptfmt() / crypt_set_format() aware programs like pw(8) and passwd(1) are for you. -Paul. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020517093415.L934-100000>