From owner-freebsd-isp Wed Jun 9 18:27:50 1999 Delivered-To: freebsd-isp@freebsd.org Received: from magicnet.magicnet.net (magicnet.magicnet.net [204.96.116.9]) by hub.freebsd.org (Postfix) with ESMTP id CF06B14D9E for ; Wed, 9 Jun 1999 18:27:43 -0700 (PDT) (envelope-from bill@bilver.magicnet.net) Received: (from uucp@localhost) by magicnet.magicnet.net (8.8.6/8.8.8) with UUCP id VAA13309 for freebsd-isp@freebsd.org; Wed, 9 Jun 1999 21:27:15 -0400 (EDT) Received: (from bill@localhost) by bilver.magicnet.net (8.9.1/8.9.1) id SAA83399 for freebsd-isp@freebsd.org; Wed, 9 Jun 1999 18:23:38 -0400 (EDT) From: Bill Vermillion Message-Id: <199906092223.SAA83399@bilver.magicnet.net> Subject: Re: Finding what user's previous password was. In-Reply-To: from Andrzej Bialecki at "Jun 9, 1999 10:18: 3 pm" To: freebsd-isp@freebsd.org Date: Wed, 9 Jun 1999 18:22:26 -0400 (EDT) X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andrzej Bialecki recently said: > On Tue, 8 Jun 1999, Todd Backman wrote: > > > It is gone. > > ..or it's still in /var/backups/master.passwd.bak However it's encoded. To prove the the user that it had not changed you'd neet to take the password the user thinks he had an encrypt it with the same salt - otherwise you have one chance of 4096 of them matching. -- bv@wjv.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message