[Bug 16] MD5 passwords not detected on Linux
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Wed Dec 12 11:53:57 EST 2001
http://bugzilla.mindrot.org/show_bug.cgi?id=16
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WONTFIX
------- Additional Comments From djm at mindrot.org 2001-12-12 11:53 -------
You can't go reading /etc/shadow to determine what format your passwords are in
- it is quite possible (preferred even) that you build as a non-root user.
The system's crypt() function is the place to implement MD5 password hashing.
Unfortunately this is often overriden by libcrypto's DES-only function of the
same name. I hear that future OpenSSL releases will remove this. IIRC Redhat
patches OpenSSL to remove the function.
BTW on Mandrake you should be using PAM anyway :)
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-unix-dev
mailing list