*BSD News Article 90229


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.ecn.uoknor.edu!feed1.news.erols.com!howland.erols.net!news-peer.gsl.net!news.gsl.net!news-paris.gsl.net!news.gsl.net!news.kolumbus.fi!news.funet.fi!news.cs.hut.fi!news.clinet.fi!not-for-mail
From: mickey@cantina.clinet.fi (Mika Ruohotie)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Migrating from DES to MD5 passwords
Date: 3 Mar 1997 10:41:18 GMT
Organization: Clinet, Espoo, Finland
Lines: 16
Message-ID: <5fe9se$rba$1@news.clinet.fi>
References: <fred-2802970152280001@dcs68.dcs-chico.com> <5f6se2$llp$2@polaris.eurocontrol.fr>
NNTP-Posting-Host: cantina.clinet.fi
NNTP-Posting-User: mickey
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:36462

Ollivier Robert <roberto@eurocontrol.fr> wrote:
>2.2 and up will understand both formats but the default is DES I think. You
>should be able to change it in the source. If you do this, each time a
>password is changed, it will use the default format.
>
>If you give crypt(3) a salt beginning with "$1$", it will use MD5
>passwords. Look into /usr/src/secure/lib/libcrypt/ for details.

does this mean that coz i want to run TACACS+ with our Cisco 2511 i need
to upgrade my 2.1.7 server to 2.2 to be able to get it "right"?

i'm using MD5 and would not feel too happy if i shoul duse DES...


mickey