Date: Tue, 2 Oct 2001 00:03:39 -0400 From: Nathan Mace <nmace85@yahoo.com> To: Jonathan Chen <jonathan.chen@itouch.co.nz> Cc: freebsd-questions@freebsd.org Subject: Re: shadow passwords Message-ID: <20011002000339.3417c5d7.nmace85@yahoo.com> In-Reply-To: <20011002153410.A92785@jonc.itouch> References: <20011001232941.5db52eb7.nmace85@yahoo.com> <20011002153410.A92785@jonc.itouch>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 2 Oct 2001 15:34:10 +1200 Jonathan Chen <jonathan.chen@itouch.co.nz> wrote: > On Mon, Oct 01, 2001 at 11:29:41PM -0400, Nathan Mace wrote: > > does freebsd support shadow passwords? > > FreeBSD does not show the encrypted password in /etc/passwd. It's > stored > in /etc/master.passwd, and the only way you can see it is if you've > got > root privileges. And if someone has root, the system's open to them. sweet...thats what i wanted to know...but what about making the master.passwd entries harder to crack? what would keep them from somehow getting a copy and using pure brute force to crack it? i'm currently using MD5(i think, not sure) is that the best encryption to use? also i read in the handbook how you can tell...the MD5 entries have a $1$ in them...my root passwd has it but my user account doesn't...whats up with that? nathan _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011002000339.3417c5d7.nmace85>