Date: Thu, 16 May 2002 14:53:49 -0700 From: Alfred Perlstein <bright@mu.org> To: Jesper Wallin <z3l3zt@phucking.kicks-ass.org> Cc: security@freebsd.org Subject: Re: How secure is a password and how many characters does it allow? Message-ID: <20020516215348.GB76843@elvis.mu.org> In-Reply-To: <1837.213.112.58.238.1021585432.squirrel@phucking.kicks-ass.org> References: <1837.213.112.58.238.1021585432.squirrel@phucking.kicks-ass.org>
next in thread | previous in thread | raw e-mail | index | archive | help
* Jesper Wallin <z3l3zt@phucking.kicks-ass.org> [020516 14:44] wrote: > > She tryed to login on the box with her 10 characters long password which > worked (ofcause) .. Now she detected that she was able to login when using a > phrase looking like [correct-password][junk/another-password].. If she start > the phrase with the correct password, she is able to login even if she add > anything else after the correct password.. For me it looks like a limit of > 10 characters passwords.. is this true? All I know is that it seems that only the first eight characters of a password are signifigant for the hash function used. -- -Alfred Perlstein [alfred@freebsd.org] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020516215348.GB76843>