|
From: | GNU bug Tracking System |
Subject: | [debbugs-tracker] bug#21318: closed (Only the first 8 characters of passwords are significant) |
Date: | Tue, 25 Aug 2015 12:43:02 +0000 |
Your message dated Tue, 25 Aug 2015 20:43:50 +0800 with message-id <address@hidden> and subject line bug#21318: Fixed has caused the debbugs.gnu.org bug report #21318, regarding Only the first 8 characters of passwords are significant to be marked as done. (If you believe you have received this mail in error, please contact address@hidden) -- 21318: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=21318 GNU Bug Tracking System Contact address@hidden with problems
--- Begin Message ---Subject: Only the first 8 characters of passwords are significant Date: Sat, 22 Aug 2015 01:20:22 -0400 yenda on #guix reported that when typing user passwords, only the first 8 characters need to be typed correctly to successfully log in. DusXMT on #guix mentioned that [GNU/]Linux From Scratch instructs users to change "#ENCRYPT_METHOD_DES" to "ENCRYPT_METHOD_SHA512" in etc/login.defs: http://www.linuxfromscratch.org/lfs/view/stable/chapter06/shadow.html I tried modifying both /etc/login.defs and etc/login.defs in our 'shadow' package recipe, and then tried updating my password entry with 'passwd' but it still only pays attention to the first 8 characters. 'strace' reveals that 'passwd' doesn't even look for any file named "login.defs". I'm not sure what's going on here, but it would be good to fix it soon. Mark
--- End Message ---
--- Begin Message ---Subject: bug#21318: Fixed Date: Tue, 25 Aug 2015 20:43:50 +0800 User-agent: Notmuch/0.19 (http://notmuchmail.org) Emacs/24.5.1 (x86_64-unknown-linux-gnu) Fixed in commit 9297065a2b2151636194b2c91e957a3ec0b33532.
--- End Message ---
[Prev in Thread] | Current Thread | [Next in Thread] |