Hi,
again I stumbled over the problem to set secure user passwords in 5.7.1.
Using passwd, passwords of length longer than 8 characters are accepted in general. However, only the first 8 characters are evaluated when checking the password. That is, password "12345678" would be accepted, even when password "1234567890" was set via passwd. This is a problem of the default hashing method DES.
Clearly, you can choose MD5 hashing, but MD5 is not considered to be secure anymore even when it is said, that preimage collisions are not possible yet. Unfortunately, any other hashing algorithm is not possible via passwd. Or I am to dumb to find it.
Alternatively, what I did was to create password hashes via
mkpasswd --method=<method> --salt="<salt>"
with <method> being des, md5, sha-256 or sha-512 and <salt> being some random string. The result I copied to the corresponding place in the shadow file and removed every information from the histories.
This worked. Nevertheless, is this one correct way to set passwords?
Regards,
Graf Koks
Hashing of user passwords
For discussions about security.
Message
Author
Jump to
- House Training
- ↳ Beginners Help ( Start Here)
- ↳ Users ( For the regulars )
- ↳ Für deutschsprachige Anhänger
- ↳ Pour les francophones
- ↳ Usuarios de habla Hispana
- ↳ HOWTO ( Solutions )
- ↳ Bugs ( Submit bugs )
- Advanced Topics
- ↳ Additional Software (PETs, n' stuff)
- ↳ Package Collections / Repositories
- ↳ REQUESTS
- ↳ Browsers and Internet
- ↳ Business
- ↳ Compiling
- ↳ Desktop
- ↳ Documents
- ↳ Drivers
- ↳ Educational
- ↳ Engineering/Science/Simulation
- ↳ Eye Candy
- ↳ Filesystem
- ↳ Games
- ↳ Graphics
- ↳ Multimedia
- ↳ Network
- ↳ Security/Privacy
- ↳ System
- ↳ Utilities
- ↳ Virtualization
- ↳ Unsorted
- ↳ Cutting edge
- ↳ Multi-session live-CD/DVD
- ↳ Hardware
- ↳ Audio
- ↳ Networking
- ↳ Dialup
- ↳ Ethernet
- ↳ Wireless
- ↳ Printers
- ↳ Video
- ↳ Puppy Derivatives
- ↳ Puppy Projects
- ↳ Next Puppy Development
- ↳ 4.x
- ↳ Bugs (4.x dev)
- ↳ Usability Issues (4.x dev)
- ↳ 5.x
- ↳ Bugs (5.x dev)
- ↳ Usability Issues (5.x dev)
- ↳ Localization Project
- ↳ Documentation Project
- Taking the Puppy out for a walk
- ↳ Announcements
- ↳ Puppy Power
- ↳ Suggestions
- ↳ Misc
- Off-Topic Area
- ↳ Programming
- ↳ Security
- ↳ Truly off-topic conversations
- ↳ Spam reports