[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: su fails

On Mon, 22 Sep 1997, Dave Wreski wrote:

> > > password   required   pam_pwdb.so shadow md5
> > 
> > Here is the problem ------------------------^
> > When you use this on the end of the line, you make pam to crypt your passwd
> > with md5. To solve the problem, simply delete this.
> So part of that password string is a checksum?  Which program is it that
> doesn't understand how to use that checksum to encrypt the string the user
> provides as his password, and then verify with /etc/shadow?

No, _I_ have put md5 there to give access to long passwords. You take that
out, you lose :-)

Your problem was using pam_unix_auth.so instead of pam_pwdb.so.
pam_unix_auth.so does not read md5-crypted passwords.

> In other words, obviously that `md5' was put there for a reason.  What was
> it intended to be used for if I have to just take it out anyway?

md5 is not a checksum there. It is used as a safe hasing method for longer
passwords (don't you are bored about 8 char passwords ? Wouldn't you love
to type your favorite poem at the login: prompt ? :-)

Cristian Gafton   --   gafton@redhat.com   --   Red Hat Software, Inc.
 UNIX is user friendly. It's just selective about who its friends are.

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []