Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 30 Nov 2000 12:55:38 -0600
From:      "Chuck Rock" <carock@epconline.net>
To:        <freebsd-security@FreeBSD.ORG>
Subject:   RE: /etc/passwd upgrade
Message-ID:  <003e01c05aff$21333be0$1805010a@epconline.net>
In-Reply-To: <20001129220238.A17777@citusc17.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help 
We've upgraded from 2.2.8 to 3.2 and will be soon 4.2 by just copying the
passwd files over.

There is a mix of 3DES and MD5 passwords in the passwd file as 2.2.8 was
configured with 3DES and the 3.2 is configrued with MD5. All new users get
MD5 by default, but the users with 3DES password still work, and won't get
MD5 unless they change their password.

We've had no problems whatsoever with this, but all the home directories and
so forth have to match the passwd file.

Is the 128bit ecryption mentioned the MD5 passwords, or is this a security
feature we havent used on our system that would make this copying of passwd
files not work?

Chuck
EPC

> -----Original Message-----
> From: owner-freebsd-security@FreeBSD.ORG
> [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Kris Kennaway
> Sent: Thursday, November 30, 2000 12:03 AM
> To: Gary Aitken
> Cc: freebsd-security@FreeBSD.ORG
> Subject: Re: /etc/passwd upgrade
>
>
> On Wed, Nov 29, 2000 at 08:47:38PM -0700, Gary Aitken wrote:
> > I'm installing a clean version of 4.1 and would like to
> maintain the passwords
> > from a 2.1 version.  The 4.1 version has 128 bit encryption,
> and I suspect
> > this is the reason the encrypted password field is larger.
> >
> > So... Is there any way to take the entries from an old 2.1 low-strength
> > passwd file and munge them into the high-strength one?
>
> Short answer: no.
>
> Slightly more helpful answer: expire all of your old user passwords so
> they will be recreated the next time the user logs in.
>
> Kris



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003e01c05aff$21333be0$1805010a>