[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Why is passwd truncating passwords



my /etc/security/pam_pwcheck.conf reads...

password:       md5 use_cracklib nullok

give that one a shot and see what happens...

Frederic Soulier wrote:
On Fri, 2004-05-14 at 21:56, Jose J. Cintron wrote:

i'm running 8.2. try using md5 too see if it's a bug in the blowfish implementation...

Arjen Runsink wrote:

Hi
On Friday 14 May 2004 22:50, Jose J. Cintron wrote:


What does your pam_unix2.conf says in the password line?  I have md5
instead of blowfish on both files and they don't get truncated...
Arjen Runsink wrote:


Following is in /etc/security/pam_pwcheck.conf
password:       blowfish nullok
Manual says it will truncate at 97 or so chars.

72 I just reread


So why does passwd truncate at 8?????


And in pam_unix2.conf there is:
password:       blowfish nullok

So this could be a blowfish only thing?

Are you running 9.0 or 9.1????

BB, Arjen



Same pbm on 9.1. Password gets truncated if I use passwd from the
command line even though I chose MD5. Only way is to use the user
management tool in YAST2

wallaby:/media # cat /etc/security/pam_pwcheck.conf
password:       md5 nullok


wallaby:/media # cat /etc/security/pam_unix2.conf
auth:   nullok
account:
password:       md5 nullok
session:        none

/Fred


--

+------------------------------------------
| José J. Cintrón - <jcintron@xxxxxxxxx>
|
| MITRE Corporation
| 7515 Colshire Drive
| Mail Stop W424
| McLean, VA  22102-7508
|
| Phone: 703.883.3040
| Fax: 703.883.1397
+------------------------------------------


--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here