From owner-freebsd-bugs  Mon Aug 28  6:54: 1 2000
Delivered-To: freebsd-bugs@freebsd.org
Received: from salmon.maths.tcd.ie (salmon.maths.tcd.ie [134.226.81.11])
	by hub.freebsd.org (Postfix) with SMTP id 53E2337B424
	for <freebsd-bugs@FreeBSD.ORG>; Mon, 28 Aug 2000 06:53:59 -0700 (PDT)
Received: from walton.maths.tcd.ie by salmon.maths.tcd.ie with SMTP
          id <aa68314@salmon>; 28 Aug 2000 14:53:58 +0100 (BST)
Date: Mon, 28 Aug 2000 14:53:56 +0100
From: David Malone <dwmalone@maths.tcd.ie>
To: Oleg Saiko <OSA@STIMOROL-UA.com>
Cc: freebsd-bugs@FreeBSD.ORG
Subject: Re: login allows user to login with wrong? password (<right_password><any_letters>)
Message-ID: <20000828145356.A21414@walton.maths.tcd.ie>
References: <00d401c010f6$91cb6880$6300000a@osa>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <00d401c010f6$91cb6880$6300000a@osa>; from OSA@STIMOROL-UA.com on Mon, Aug 28, 2000 at 04:47:35PM +0300
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Mon, Aug 28, 2000 at 04:47:35PM +0300, Oleg Saiko wrote:

> Does login-program authenticates me by comparing real_password from
> the password list with the input_password that includes from
> real_password and any others letters at the end?

If you are using DES encrypted passwords, only the first 8 characters
of the password are significant. If you use MD5 I beleive all the
characters are significant.

	David.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message