Date: Mon, 28 Aug 2000 10:04:42 -0400 (EDT) From: "Chris D. Faulhaber" <jedgar@fxp.org> To: Oleg Saiko <OSA@STIMOROL-UA.com> Cc: freebsd-bugs@FreeBSD.ORG Subject: Re: login allows user to login with wrong? password (<right_password><any_letters>) Message-ID: <Pine.BSF.4.21.0008281004030.2659-100000@pawn.primelocation.net> In-Reply-To: <00d401c010f6$91cb6880$6300000a@osa>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 28 Aug 2000, Oleg Saiko wrote: > Hi guys, > Could you be so kind to explain me is it bug or feature: > I could login to the system typing the right_password+abracadabra. > Does login-program authenticates me by comparing real_password from the password list with the input_password that includes from real_password and any others letters at the end? > (I suppose strictly in this order) > IIRC, only the first 8 chars are significant with DES passwords whereas 128 are significant with MD5. ----- Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org -------------------------------------------------------- FreeBSD: The Power To Serve - http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0008281004030.2659-100000>