Date: Thu, 26 Sep 2002 12:44:50 +0200 From: Jan Wagner <jan.wagner@de.tiscali.com> To: Olafur Osvaldsson <oli@isnic.is> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Password encoding Message-ID: <20020926124450.A18244@de.tiscali.com> In-Reply-To: <20020926095550.GB10763@isnic.is>; from oli@isnic.is on Thu, Sep 26, 2002 at 09:55:50AM %2B0000 References: <200209260922.g8Q9MYR23427@sequel.rsm.ru> <20020926095550.GB10763@isnic.is>
next in thread | previous in thread | raw e-mail | index | archive | help
Part of man :
The algorithm used will depend upon whether crypt_set_format() has been
called and whether a global default format has been specified. Unless a
global default has been specified or crypt_set_format() has set the for-
mat to something else, the built-in default format is used. This is cur-
rently DES if it is available, or MD5 if not.
How the salt is used will depend upon the algorithm for the hash. For
best results, specify at least two characters of salt.
The crypt_get_format() function returns a constant string that represents
the name of the algorithm currently used. Valid values are `des', `blf'
and `md5'.
The crypt_set_format() function sets the default encoding format accord-
ing to the supplied string.
The global default format can be set using the /etc/auth.conf file using
the `crypt_format' property.
...
greets jw
ps. man : (man auth.conf) && man 3 crypt && man 3 auth_getval(!!)
On Thu, Sep 26, 2002 at 09:55:50AM +0000, Olafur Osvaldsson wrote:
> Date: Thu, 26 Sep 2002 09:55:50 +0000
> From: Olafur Osvaldsson <oli@isnic.is>
> To: Dmitry Agafonov <aga@rsm.ru>
> Cc: freebsd-security@FreeBSD.ORG
> Subject: Re: Password encoding
> In-Reply-To: <200209260922.g8Q9MYR23427@sequel.rsm.ru>
> User-Agent: Mutt/1.3.28i
> List-Archive: <http://docs.freebsd.org/mail/>; (Web Archive)
> X-Loop: FreeBSD.org
> X-OriginalArrivalTime: 26 Sep 2002 09:56:15.0528 (UTC) FILETIME=[F3F9DA80:01C26542]
>
> Dmitry,
> You should be able to set it in /etc/auth.conf, but that doesn't work for me.
>
> You can instead run crypt_set_format("md5") to set the default for your prog
> to md5 or blf for blowfish.
>
> You could also make sure that your salts start with $<digit>$ wich would then
> set the algorithm used in encryption, more info on this in the crypt(3) manpage.
>
> /Oli
>
> On Thu, 26 Sep 2002, Dmitry Agafonov wrote:
>
> > Ok, how about more common question. How do I ask system crypt() to use MD5
> > by default? /etc/make.conf or such?
> >
> > --
> > Dmitry
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-security" in the body of the message
>
> --
> Olafur Osvaldsson
> Systems Administrator
> Internet a Islandi hf.
> Tel: +354 525-5291
> Email: oli@isnic.is
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020926124450.A18244>