Date: Sun, 6 Jan 2002 22:34:06 -0500 From: Bill Vermillion <bv@wjv.com> To: security@FreeBSD.ORG Subject: Re: Help with DES > MD5 Message-ID: <20020107033405.GA2105@wjv.com> In-Reply-To: <bulk.11762.20020106144651@hub.freebsd.org> References: <bulk.11762.20020106144651@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Jan 06, 2002 at 02:46:51PM -0800, security-digest thus spoke: Tal Ben-Eliezer said this: > if my question was answered already, sorry, i couldnt keep > up with the 50 new email's from this list every day :). In my > login.conf i have defined that the default password hash's should > be of MD5 structure, though when i check my /etc/master.passwd, it > seems as though ALL users still use DES. I have applied changes to > my login.conf using that command (which doesn't come to mind right > now), and i have also attempted rebooting, i'm very stumped as to > what i should do to convert my DES hashes to MD5, or just plain > start using MD5 hashes for future users. I searched for help on > EFNet, unfortunately no one had an answer; Thanks for your time > everyone! If you will look at the top lines in login.conf it notes that you should run cap_mkdb /etc/login.conf to rebuild the login database. But in the next message Tim J. Robbins said this: > Adding the :passwd_format=md5: capability to /etc/login.conf in the > right class works as it should (I just checked then). Next time a user > changes their password, it is converted to the new encryption format. > > Since you're using DES (not the default), it should be as simple as > replacing :passwd_format=des: with :passwd_format=md5:. > > Check that you've changed the passwd_format capability for the class > the users are in. I changed the login.conf and found no difference and then looked at login.conf and saw the line about the cap_mkdb . I had gotten so used to just scaning down the lines in so many text configuration files that I just whizzed right over the instructions :-) In this case familiarity breeds failure. Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020107033405.GA2105>