Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 19 Jun 2013 09:42:42 +0430
From:      takCoder <tak.official@gmail.com>
To:        Michael Sierchio <kudzu@tenebras.com>
Cc:        FreeBSD Questions <freebsd-questions@freebsd.org>, Eduardo Morras <emorrasg@yahoo.es>
Subject:   Re: FreeBSD maximum password length
Message-ID:  <CAPkyVLwCN8+CFc+Uxa2xQL0xnYO=2i9OQxsxN5g5UmeuyoVFOA@mail.gmail.com>
In-Reply-To: <CAHu1Y70crektN6USx=WoARB0nLYRAjsb2D_ScM17Bmnb_-L82w@mail.gmail.com>
References:  <CAPkyVLw=m5-3HX7YC-Zqm=OgTLMhNYq4trBSWso8qEmPzqV38Q@mail.gmail.com> <op.wytlieyz34t2sn@tech304.office.supranet.net> <CAPkyVLw7_xJwSMGSkfPdSrxrj46L9rV0DqbK0wuhZPnjq-jsKg@mail.gmail.com> <CALBk6yLTfCGDXkxCL19kfuVQRp5BngR=ZS8kXz3DkJVJUMGWFQ@mail.gmail.com> <1371523096.28354.140661245145265.2BADB3AF@webmail.messagingengine.com> <CAHu1Y70crektN6USx=WoARB0nLYRAjsb2D_ScM17Bmnb_-L82w@mail.gmail.com>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
Thank you all for the points you mentioned around this topic.

On Mon, Jun 17, 2013 at 3:44 PM, Mark Felder <feld@feld.me> wrote:
>There isn't a max password length as far as I'm aware, ...


On Jun 17, 2013, at 7:47 AM, Eduardo Morras wrote:
>
> If I remember well, any password longer than default size is truncated,
so passwords
>
> a) '
AhN12Njufsn8794432kjfvsnkkJHNDSMNDKh844mNJKnhjhu8u8424'
> b) 'AhN12Njufsn8794432kj'
>
> have the same salt hash value and both validate the user.
>

My test machine is currently an old 8.2 one, but the final machine may be
upgraded. on this machine, if i enter a password longer than 128
characters, extra characters will be exactly trimmed. So, the final
password for any user with a greater-equal input password string, with same
first 128 characters, would be the first 128characters.

has this been changed in Freebsd 8.3+ to what you explained, Eduardo, or
this is the respected behavior? or i am wrong somewhere?

Thank you :)


On Tue, Jun 18, 2013 at 7:12 AM, Michael Sierchio <kudzu@tenebras.com>wrote:

> I know this may seem off-the-wall to some, but I pasted a hashed
> password for a user under 9.1 into the /etc/passwd entry for that user
> on an 8.3 machine, and auth continues to work properly.  That's nice.
>
> - M
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "
> freebsd-questions-unsubscribe@freebsd.org"
>



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?CAPkyVLwCN8+CFc+Uxa2xQL0xnYO=2i9OQxsxN5g5UmeuyoVFOA>