From owner-freebsd-isp Mon Nov 29 17:51:26 1999 Delivered-To: freebsd-isp@freebsd.org Received: from eg.karpaty.uzhgorod.ua (eg.karpaty.uzhgorod.ua [193.125.74.114]) by hub.freebsd.org (Postfix) with ESMTP id A74F815673 for ; Mon, 29 Nov 1999 17:49:00 -0800 (PST) (envelope-from eug@karpaty.uzhgorod.ua) Received: from karpaty.uzhgorod.ua (localhost [127.0.0.1]) by eg.karpaty.uzhgorod.ua (8.9.3/8.9.3) with ESMTP id DAA06798; Tue, 30 Nov 1999 03:46:55 +0200 (EET) (envelope-from eug@karpaty.uzhgorod.ua) Message-ID: <38432C8E.2EB1CBEA@karpaty.uzhgorod.ua> Date: Tue, 30 Nov 1999 03:46:54 +0200 From: Eugene Gres X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 3.3-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: "Scot W. Hetzel" Cc: "J.C. Frazier" , freebsd-isp@FreeBSD.ORG, Eugene Gres Subject: Re: apache13-fp-modssl problem with passwords References: <38422055.2906C9B2@csocs.com> <001b01bf3a4f$8b1d8be0$1d48b6ca@gothic.net.au> <38430A5F.FB18F6@csocs.com> <019001bf3ac7$fccc17c0$8dfee0d1@westbend.net> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Scot W. Hetzel" wrote: > From: "J.C. Frazier" > > > libscrypt* only supports MD5; it's the "export" libraries, and can't > support > > > DES. libdescrypt* supports both DES and MD5, and defaults to whatever > salt > > > it gets provided (so if users already have an MD5 password, they stay > with > > > it... but generally new users get a DES one.) You can either patch > descrypt > > > to swap the default, or wait for a new crypt() series of functions which > > > will allow the choice (this is being written currently, but I can't > remember > > > the URL.) > > > > Do you suggest just changing the libcrypt.* libs to symbolically link to > the > > des libs then, or is there an easier way to change everything over in one > > swoop? And do you know if the libs are the only thing I need to change, > or are > > there other things such as auth.conf? I like your idea, and if the des > crypt() > > can do both so I wouldn't have to change current passwords on all my > users, > > things will be much easier. > > > Yes, change the symbolic links for libcrypt.* so that they point to the > libdescrypt.* libraries (instead of the libscrypt.* libraries). The > libdescrypt library has support for both DES & MD5 passwords (libdescrypt > passes MD5 passwords to libscrypt). > > This is the only change that needs to be made. > > This will allow your users to login with either DES/MD5 passwords, as well > as making the passwords work in the Apache-FP server. > > Note: any new/changed passwords will be encrypted with DES. > > Scot > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message Hi! You must : backup in ${server_root}/ _vti_pvt/server.pwd Than use: htpasswd(Apache htpasswd ) P.S. I'l use FP4.0(2000) and notes in www.freebsdzine.org/7 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message