Date: Tue, 30 Nov 1999 03:46:54 +0200 From: Eugene Gres <eug@karpaty.uzhgorod.ua> To: "Scot W. Hetzel" <support@westbend.net> Cc: "J.C. Frazier" <wolfman@csocs.com>, freebsd-isp@FreeBSD.ORG, Eugene Gres <eug@karpaty.uzhgorod.ua> Subject: Re: apache13-fp-modssl problem with passwords Message-ID: <38432C8E.2EB1CBEA@karpaty.uzhgorod.ua> References: <Pine.BSF.4.05.9911282040030.2406-100000@misery.sdf.com> <38422055.2906C9B2@csocs.com> <001b01bf3a4f$8b1d8be0$1d48b6ca@gothic.net.au> <38430A5F.FB18F6@csocs.com> <019001bf3ac7$fccc17c0$8dfee0d1@westbend.net>
next in thread | previous in thread | raw e-mail | index | archive | help
"Scot W. Hetzel" wrote: > From: "J.C. Frazier" <wolfman@csocs.com> > > > libscrypt* only supports MD5; it's the "export" libraries, and can't > support > > > DES. libdescrypt* supports both DES and MD5, and defaults to whatever > salt > > > it gets provided (so if users already have an MD5 password, they stay > with > > > it... but generally new users get a DES one.) You can either patch > descrypt > > > to swap the default, or wait for a new crypt() series of functions which > > > will allow the choice (this is being written currently, but I can't > remember > > > the URL.) > > > > Do you suggest just changing the libcrypt.* libs to symbolically link to > the > > des libs then, or is there an easier way to change everything over in one > > swoop? And do you know if the libs are the only thing I need to change, > or are > > there other things such as auth.conf? I like your idea, and if the des > crypt() > > can do both so I wouldn't have to change current passwords on all my > users, > > things will be much easier. > > > Yes, change the symbolic links for libcrypt.* so that they point to the > libdescrypt.* libraries (instead of the libscrypt.* libraries). The > libdescrypt library has support for both DES & MD5 passwords (libdescrypt > passes MD5 passwords to libscrypt). > > This is the only change that needs to be made. > > This will allow your users to login with either DES/MD5 passwords, as well > as making the passwords work in the Apache-FP server. > > Note: any new/changed passwords will be encrypted with DES. > > Scot > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message Hi! You must : backup in ${server_root}/ _vti_pvt/server.pwd Than use: htpasswd(Apache htpasswd ) P.S. I'l use FP4.0(2000) and notes in www.freebsdzine.org/7 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38432C8E.2EB1CBEA>