New subject: [suse-security] MD5 password confirmation fails after update to OpenSSH 3.3 on SuSE 7.3

26 Jun 2002

      Hello,

this morning I updated all linux servers running SuSE 7.3 to OpenSSH 3.3.
Now I am not able to login via ssh anymore - password confirmation fails.
First I tought, that sshd is not allowed to read /etc/shadow, but this was not the case.
"harden_suse" made my /etc/shadow passwords be encrypted with MD5. After adding a new user
with yast the new user's password was only DES encrypted.
With this user I am able to login, with users who has got MD5 encrypted passwords I'm not able to
login via ssh.

Am I right, that the new sshd has got problems with MD5 password?
What can I do now?

Regards,
Thomas

MD5 password confirmation fails after update to OpenSSH 3.3 on SuSE 7.3

Thomas Föcking

Michael Schmidt

James H. Cloos Jr.

tags

participants (3)