Date: Mon, 28 Aug 2000 16:47:35 +0300 From: "Oleg Saiko" <OSA@STIMOROL-UA.com> To: <freebsd-bugs@FreeBSD.ORG> Subject: login allows user to login with wrong? password (<right_password><any_letters>) Message-ID: <00d401c010f6$91cb6880$6300000a@osa>
index | next in thread | raw e-mail
[-- Attachment #1 --]
Hi guys,
Could you be so kind to explain me is it bug or feature:
I could login to the system typing the right_password+abracadabra.
Does login-program authenticates me by comparing real_password from the password list with the input_password that includes from real_password and any others letters at the end?
(I suppose strictly in this order)
Thank you,
Oleg
[-- Attachment #2 --]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=windows-1251">
<META content="MSHTML 5.50.4134.600" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hi guys,</FONT></DIV>
<DIV><FONT face=Arial size=2>Could you be so kind to explain me is it
bug or feature:</FONT></DIV>
<DIV><FONT face=Arial size=2>
I could login to the system typing the
right_password+abracadabra.</FONT></DIV>
<DIV><FONT face=Arial size=2>Does login-program authenticates me by comparing
real_password from the password list with the input_password
that includes from real_password and any others letters at the
end?</FONT></DIV>
<DIV><FONT face=Arial size=2>(I suppose strictly in this order)</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Thank you,</FONT></DIV>
<DIV><FONT face=Arial size=2>Oleg</FONT></DIV></BODY></HTML>
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00d401c010f6$91cb6880$6300000a>