Re: Only 8 char passwords?

To: Lista de Debian-User <debian-user@lists.debian.org>
Cc: Daniel de los Reyes <dadecal@s2-selling.com>
Subject: Re: Only 8 char passwords?
From: Nathan E Norman <nnorman@micromuse.com>
Date: Fri, 9 Mar 2001 02:45:11 -0600
Message-id: <[🔎] 20010309024511.A14641@micromuse.com>
Mail-followup-to: Lista de Debian-User <debian-user@lists.debian.org>, Daniel de los Reyes <dadecal@s2-selling.com>
In-reply-to: <[🔎] 20010309085056.A1440@s2-selling.com>; from dadecal@s2-selling.com on Fri, Mar 09, 2001 at 08:50:56AM +0100
References: <[🔎] 20010309085056.A1440@s2-selling.com>

On Fri, Mar 09, 2001 at 08:50:56AM +0100, Daniel de los Reyes wrote:
> After worring quite a lot about using complex (and long) enough passwords today I have realized that it doesn't matter what I type after the eigth char of any user's password it will be accepted. Why is this? I've got shadow on and MD5 off.

[please try wrapping your lines]

Turn md5 on.  This will solve your problem.  The older crypt system
only compares the first 8 chars unfortunately.

-- 
Nathan Norman - Staff Engineer | A good plan today is better
Micromuse Inc.                 | than a perfect plan tomorrow.
mailto:nnorman@micromuse.com   |   -- Patton

Attachment: pgpCuUFQSkEz9.pgp
Description: PGP signature

Reply to:

References:
- Only 8 char passwords?
  - From: Daniel de los Reyes <dadecal@s2-selling.com>

Prev by Date: Mail question
Next by Date: Re: xserver 4.0.2 in testing
Previous by thread: Only 8 char passwords?
Next by thread: Mail question
Index(es):
- Date
- Thread