From owner-freebsd-questions  Mon Feb 14  0:20:40 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from sign.chg.ru (sign.chg.ru [193.233.46.10])
	by builder.freebsd.org (Postfix) with ESMTP id AD9034ABC
	for <freebsd-questions@FreeBSD.ORG>; Mon, 14 Feb 2000 00:20:30 -0800 (PST)
Received: from localhost (andrew@localhost)
	by sign.chg.ru (8.9.3/8.9.3) with ESMTP id LAA30901;
	Mon, 14 Feb 2000 11:20:30 +0300 (MSK)
	(envelope-from andrew@chg.ru)
X-Authentication-Warning: sign.chg.ru: andrew owned process doing -bs
Date: Mon, 14 Feb 2000 11:20:29 +0300 (MSK)
From: "Andrew L. Neporada" <andrew@chg.ru>
To: cjclark@home.com
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: MD5 and DES passwords maximum lenght
In-Reply-To: <20000213174656.G31722@cc942873-a.ewndsr1.nj.home.com>
Message-ID: <Pine.BSF.4.21.0002141108410.30821-100000@sign.chg.ru>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sun, 13 Feb 2000, Crist J. Clark wrote:

> On Sun, Feb 13, 2000 at 03:04:07AM +0300, Andrew L. Neporada wrote:
> > Hi!
> > Ocassional installation of DES distribution (through
> > Configure->Distributions->DES in /stand/sysinstall) seems to limit my
> > passowrds to eight symbols. Is it right? It seems to me that there is no
> > such limit in default encrypting scheme (MD5). What should I do to restore
> > MD5 encryption? (I suppose that 8 symbols is quite enough, but my pass is
> > longer ;-)
> > 
> > Thanks in advance for any input and sorry for my English!
> 
> Yes, in DES passwords, only the first eight characters are
> significant. If your password is longer, the extra characters are
> simply ignored, so you do not _need_ to change to MD5.
> 
> However, if you still want to, you need to either (1) swap the
> symbolic links from libcrypt* from libdescrypt* to libscrypt* or (2)
> insert a "dummy" MD5 password into the master.passwd file (using
> vipw). In either case imediately use the passwd(1) command to reset
> the password to the right type.
> -- 
> Crist J. Clark                           cjclark@home.com
> 
Thank you! I swaped symlinks, so new passwords are MD5 encrypted now.
BTW, what do you mean under `"dummy" MD5 password`? Is it just an empty
password record?

-- Andrew.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message