From owner-freebsd-current Fri Jan 19 4:16:57 2001 Delivered-To: freebsd-current@freebsd.org Received: from mgate05.so-net.ne.jp (mgate05.so-net.ne.jp [210.139.254.152]) by hub.freebsd.org (Postfix) with ESMTP id 48C9237B400 for ; Fri, 19 Jan 2001 04:16:37 -0800 (PST) Received: from mail.ya3.so-net.ne.jp (mspool11.so-net.ne.jp [210.139.248.11]) by mgate05.so-net.ne.jp (8.8.8+3.0Wbeta9/3.6W00122022) with ESMTP id VAA02655 for ; Fri, 19 Jan 2001 21:16:35 +0900 (JST) Received: from localhost (p84ea60.ykh2.ap.so-net.ne.jp [210.132.234.96]) by mail.ya3.so-net.ne.jp (8.9.3/3.7W99092111) with ESMTP id VAA10168 for ; Fri, 19 Jan 2001 21:16:34 +0900 (JST) To: current@FreeBSD.org Subject: adduser and /etc/auth.conf From: Yoshihiro Koya X-Mailer: Mew version 1.94.1 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: <20010119211923R.ipfw@ya3.so-net.ne.jp> Date: Fri, 19 Jan 2001 21:19:23 +0900 X-Dispatcher: imput version 990905(IM130) Lines: 43 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello, The current default /etc/auth.conf is as follows: ---------- # # $FreeBSD: src/etc/auth.conf,v 1.5 2000/12/28 10:32:00 peter Exp $ # # This file contains information on what types of authentication to use. # It is just the beginnings of a greater scheme. # crypt_default = md5 des # auth_list = passwd kerberos auth_list = passwd ---------- On the other hand, the current default /etc/login.conf looks like: ---------- # login.conf - login class capabilities database. # (snip) default:\ :passwd_format=md5:\ :copyright=/etc/COPYRIGHT:\ :welcome=/etc/motd:\ (snip) ---------- This will cause a problem. A new user registered by adduser(1) will be able to loggin the system. Because the adduser script uses des as the default according to the setting in /etc/auth.conf and crypt_set_format(3) in passwd(1) sets md5 as the default hash function, the authentication will fail always. Of course, it is easy to change one of the above files. It might be, however, quite difficult to guess the reason of the login failure caused by this. I think that it might be convenient to describe this in some documents like UPDATING or a manpage of adduser(1) of -current. koya To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message