Date: Sun, 2 Jul 1995 22:29:59 -0400 (EDT) From: "Rashid Karimov." <rashid@haven.ios.com> To: brian@MediaCity.com (Brian Litzinger) Cc: freebsd-questions@freebsd.org Subject: Re: crossing passwords bsdi<->FreeBSD Message-ID: <199507030229.WAA01943@haven.ios.com> In-Reply-To: <m0sSV5E-000rehC@easynet.com> from "Brian Litzinger" at Jul 2, 95 12:53:36 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Hi there, > > > Now I'm at the point where Im ready to convert some machines which allow > user logins. The password database is distributed among many machines, > so what I need is a way to distribute passwords to BSDI BSD/386 1.1 > machines and FreeBSD 2.0.5 at the same time. > > I've already noted the the FreeBSD passwords and not interchangable with > the BSD/386 1.1 passwords. Yes , the default crypt() in FreeBSD 2* is MD5 based, because of certain restriction for DES source code's redistrib. outside US. So the encrypted passwords look different from those encrypted using DES > > If I upgrade FreeBSD with the DES stuff, will they then use the > same scheme? Yes , DES is pretty standard. I would recommend to everybody in US who's about to install FreeBSD to use _DES from the very beginning , especially if you have other Unices as well . It's quite possible that you'll have to move accounts or to run some auth. servers on FreeBSD. If you stick to DES you'll be able to exchange password files freely between different Unices/machines. Assuming that those use DES too, of course I have a Q: has any1 here modified passwd source code - I remember one I used to have on SCO . In that scheme admin was able impose some restrictions on new password , from that very good one was: users were not able to choose passwords themselves - the pronouncable passwords were generated for them by the program itself. So when the user saw the funniest/easiest_to _remember one, he/she just retyped it back to the program. Little paranoid , but worth to use - I'm pretty sure that on ISP's servers ~30 % users have the same password as their login name. And we have unused ( yet?) field in the master.passwd , which we probably can use ? Or keep the track in separate DB ... Rashid
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199507030229.WAA01943>