From owner-freebsd-security Sun Sep 17 23: 9:58 2000 Delivered-To: freebsd-security@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 8F62737B422; Sun, 17 Sep 2000 23:09:54 -0700 (PDT) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id XAA66930; Sun, 17 Sep 2000 23:09:54 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Sun, 17 Sep 2000 23:09:54 -0700 (PDT) From: Kris Kennaway To: "Vladimir B. Grebenschikov" Cc: freebsd-security@freebsd.org, Brian Feldman Subject: Re: MD5 passwords vs DES In-Reply-To: <14789.42660.401430.305445@vbook.express.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 18 Sep 2000, Vladimir B. Grebenschikov wrote: > > I have a question: > > Do anybody have ideas to add 'default crypting mode' for utilities > like passwd, adduser, etc ? > > I am not very happy to add new user with adduser, then to edit manualy > /etc/passwd adding $1$xxx$xx to password, then lanch passwd to change > password for user. In a reality passwd uses old password as salt for > new password, but if there was no old password or it was '*' - new > password is crypted with DES :( Brian Feldman wrote code in -current which fixes this by using a login capability to specify which format to use for new passwords. I'm trying to get him to merge it back to -stable in time for 4.1.1. Brian, whats the latest? Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message