Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [month] [year] [list] 
Date: Thu, 26 Aug 2004 08:26:33 -0300
From: Lucas Brasilino <brasilino@...ife.pe.gov.br>
To: popa3d-users@...ts.openwall.com
Subject: Re: popa3d problem with more than 8 character passwords.

Hi Daniel:

>>12345678 is authenticated.
>>12345678itsafeature? is authenticated...
>>and so on.
>>
>>I'm using RH7.2, PAM 0.74, GLIBC 2.2.2, OpenSSL 0.9.6g
> 
> 
> 	i think the problem is in redhat, IIRC, it defaults to normal
> 	crypt that only supports 8 chars, you have to switch it to
> 	use MD5 so it can use more than 8 chars
> 
> 	check the /etc/shadow, if the passwords start with $1, its md5,
> 	if its a 13 chars field with letters and numbers, its using the
> 	old crypt... note that its even possible that you have a mix 
> 	mode, some with normal crypt, others with the MD5
> 
> 	IIRC, you can change the password setting in /etc/login.defs

	Thanks a lot for you explanation :)

-- 

[]'s
Lucas Brasilino
brasilino@...ife.pe.gov.br
http://www.recife.pe.gov.br
Emprel -	Empresa Municipal de Informatica (pt_BR)
		Municipal Computing Enterprise (en_US)
Recife - Pernambuco - Brasil
Fone: +55-81-34167078

Powered by Openwall GNU/*/Linux - Powered by OpenVZ