[ic] security problem in Admin UI login?

Mike Heins interchange-users@icdevgroup.org
Thu Aug 15 11:47:01 2002


Quoting Jon Jensen (jon@redhat.com):
> On Thu, 15 Aug 2002, Kevin Walsh wrote:
> 
> > The crypt() function is pretty standard in UNIX systems.  If you're
> > using passwd/shadow files to store your UNIX accounts then you'll
> > find that your root password will also show the same symptoms, as
> > will the password used by all of your other accounts.
> 
> Although all Red Hat Linux (and derivative) systems have defaulted to 
> using MD5 "encrypted" passwords since RHL 6.0, and there's no length limit 
> on passwords stored that way.
> 
> Of course I've now veered even further off topic.

Except that we always have MD5, and there is no reason we couldn't
offer that as an option for passwords.

-- 
Mike Heins
Perusion -- Expert Interchange Consulting    http://www.perusion.com/
phone +1.513.523.7621      <mike@perusion.com>

Fast, reliable, cheap.  Pick two and we'll talk.  -- unknown