Date: Sun, 15 Oct 2000 22:39:59 -0500 From: "Peter Avalos" <pavalos@theshell.com> To: "Bill Fumerola" <billf@chimesnet.com>, "Stephen Hocking" <shocking@houston.rr.com> Cc: <hackers@freebsd.org> Subject: RE: Getting Linux NIS to work with FreeBSD NIS servers Message-ID: <AAEMIFFLKPKLAOJHJANHKECJCLAA.pavalos@theshell.com> In-Reply-To: <20001015232612.S37870@jade.chc-chimes.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Actually Linux machines "can" handle MD5 passwords. Most likely, the problem is that you haven't merged the hashed passwords into the passwd.* maps. From /var/yp/Makefile: # If you want to use a FreeBSD NIS server to serve non-FreeBSD clients # (i.e. clients who expect the password field in the passwd maps to be # valid) then uncomment this line. This will cause $YPDIR/passwd to # be generated with valid password fields. This is insecure: FreeBSD # normally only serves the master.passwd maps (which have real encrypted # passwords in them) to the superuser on other FreeBSD machines, but # non-FreeBSD clients (e.g. SunOS, Solaris (without NIS+), IRIX, HP-UX, # etc...) will only work properly in 'unsecure' mode. # UNSECURE = "True" Peter Avalos TheShell.com -----BEGIN GEEK CODE BLOCK----- Version: 3.12 GCS/ED/B d-(+) s:+> a-- C++$ UBLO++++$ P+ L++++ E- W+ N+ o? K? w(++) !O M- V- PS+ PE++ Y+ PGP++ t+@ 5 X- R- tv+ b++ DI- D-- G e>+++ h-- r++ y++ ------END GEEK CODE BLOCK------ > -----Original Message----- > From: owner-freebsd-hackers@FreeBSD.ORG > [mailto:owner-freebsd-hackers@FreeBSD.ORG]On Behalf Of Bill Fumerola > Sent: Sunday, October 15, 2000 10:26 PM > To: Stephen Hocking > Cc: hackers@freebsd.org > Subject: Re: Getting Linux NIS to work with FreeBSD NIS servers > > > On Sun, Oct 15, 2000 at 10:23:05PM -0500, Stephen Hocking wrote: > > The Linux box appears toknow about the users, it just cant get > the passwords > > right - something tickles my mind about DES vs MD5, is this the > case, and how > > do I convert my MD5 passwords if needed? > > Yes thats the case, no there is no "conversion" program. If there was > a conversion program it would mean there is a way to translate to > plaintext > and that obviously isn't the case (modulo brute-force). > > -- > Bill Fumerola - Network Architect, BOFH / Chimes, Inc. > billf@chimesnet.com / billf@FreeBSD.org > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AAEMIFFLKPKLAOJHJANHKECJCLAA.pavalos>