[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Why is passwd truncating passwords



Hi all,

This must be a bug in passwd.

On Friday 14 May 2004 22:56, Jose J. Cintron wrote:
> i'm running 8.2.  try using md5 too see if it's a bug in the blowfish
> >>>password:       blowfish nullok
> >>>Manual says it will truncate at 97 or so chars.
> > 72 I just reread

It truncates with DES, MD5 and blowfish
When using yast to modify a user password +8 long pws work.

Explicitely setting an allowable password length seems to work however.

# cat pam_pwcheck.conf | grep maxlen
password:       minlen=6 maxlen=16 cracklib md5 nullok

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here