Mailinglist Archive: opensuse-security (601 mails)

< Previous Next >
Re: [suse-security] crypt()
  • From: "Kurt Seifried" <listuser@xxxxxxxxxxxx>
  • Date: Wed, 16 Aug 2000 13:55:50 -0600
  • Message-id: <007301c007bb$fae27dc0$6900030a@xxxxxxxxxxxx>
> We have support for it since a long time. Read
> /usr/doc/packages/pam/README.md5 on SuSE Linux 6.4 or
> /usr/share/doc/packages/pam/README.md5 on SuSE Linux 7.0. Or look
> in your handbook.
>
> md5 is problematic, because a lot of Unix and services/protocols
> don't understand it. Only look at distributions which have md5
> as default, how long take it until programs like yppasswd/rpc.yppasswdd
> for example where fixed and doesn't crash with a buffer overun ?
> (I know when I have fixed it ;)

PAM. THis is why we have PAM. A program ralks to PAM, PAM does the grunt
work. It could be a crypt based password scheme, MD5 or a smart card, the
applicaiton doesn't know or care.

http://www.sysadminmag.com/current/feature.shtml

> Thorsten

-Kurt


< Previous Next >
Follow Ups