From owner-freebsd-isp Thu Jun 10 7: 8: 3 1999 Delivered-To: freebsd-isp@freebsd.org Received: from magicnet.magicnet.net (magicnet.magicnet.net [204.96.116.9]) by hub.freebsd.org (Postfix) with ESMTP id 9D1FD150A1 for ; Thu, 10 Jun 1999 07:07:57 -0700 (PDT) (envelope-from bill@bilver.magicnet.net) Received: (from uucp@localhost) by magicnet.magicnet.net (8.8.6/8.8.8) with UUCP id KAA14701 for freebsd-isp@freebsd.org; Thu, 10 Jun 1999 10:06:22 -0400 (EDT) Received: (from bill@localhost) by bilver.magicnet.net (8.9.1/8.9.1) id JAA90294 for freebsd-isp@freebsd.org; Thu, 10 Jun 1999 09:49:41 -0400 (EDT) From: Bill Vermillion Message-Id: <199906101349.JAA90294@bilver.magicnet.net> Subject: Re: Finding what user's previous password was. In-Reply-To: <375FB347.678E2667@eclipse.net.uk> from Stuart Henderson at "Jun 10, 1999 1:44:55 pm" To: freebsd-isp@freebsd.org Date: Thu, 10 Jun 1999 09:49:20 -0400 (EDT) X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Stuart Henderson recently said: > > > ..or it's still in /var/backups/master.passwd.bak > > However it's encoded. To prove the the user that it had > > not changed you'd neet to take the password the user thinks he > > had an encrypt it with the same salt - otherwise you have one > > chance of 4096 of them matching. > Unless you copy and paste it to the master.passwd file and > get him to try logging in with it :) Unless your master password backup file is older than the date on which the person experienced the problems, you can't guarantee that was the password. If you save the information that the daily reports generate you will have a record when the account was created and when passwords, (or anything else in that users file) was changed. Bill -- bv@wjv.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message