Date: Sat, 13 Jul 2002 23:24:26 -0700 From: Darren Pilgrim <dmp@pantherdragon.org> To: Naga Suresh B <torvalds@addr.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: plain text password Message-ID: <3D31191A.3AD13F70@pantherdragon.org> References: <009901c22a37$7ffed450$9600a8c0@blraddrcom>
next in thread | previous in thread | raw e-mail | index | archive | help
Naga Suresh B wrote: > > Hai, > > How can I change the password file into a plain text password, it > should not use any authentication either MD5 or Pam. I need this solution as > early as possible. There are programs in ports that you can use to do dictionary and exhaustive attacks against the hashes. This is the only way to get the plaintext passwords. After that, the method you use for storing the plaintext outside of the system password database is up to you. If you actually want the pwdb to use plaintext instead of hashes, you'll need to hack the source yourself as the password system was not designed to not use crypto. Start with getpass(3), read the source for /usr/bin/passwd, etc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D31191A.3AD13F70>