Hello,
I'm having an issue with my password hashing. In /etc/shadow all the passwords hashes start with $1$. The security people want me to change it so the password hash starts with $5$ or $6$. So this is what I did to fix this.
I changed CRYPT_DEFAULT for 1 to 6
Code:
CRYPT_DEFAULT=6
When I create a new account, the account uses the new password hashing method, but when I change an existing accounts password it still uses the old method. I'm thinking that I need to restart something but I don't know what.
Any help would be great.
---------- Post updated at 01:04 PM ---------- Previous update was at 12:04 PM ----------
---------- Post updated at 01:41 PM ---------- Previous update was at 01:04 PM ----------
Ok I have the answer now.
To set the password with the new hash you have to remove the old password 1st. You do that by using the -d option.
Code:
passwd -d root
passwd root
New Password:
re-enter new password:
password: password successfully changed for root
Now the password hash starts with $6$
I hope this helps someone
These 2 Users Gave Thanks to bitlord For This Post:
Hi,
how can one find that which encryption algorithm the system is using for keeping the user password in the /etc/passwd or /etc/shadow file.
Is it
1: Hashing ( which considers only first 5 letters of password)
2: MD5 (Which allows arbitry length passwords)
Thanks,
~amit (0 Replies)
Hi,
I'm looking for linear hashing implementation in C language. Please help.
PS: I have implement this on Ubuntu 10.04 Linux on 64 bit machine. (1 Reply)
HI. I was wondering if anyone can assist me in this. I have an HP-UX 11.31 server at work which keeps expiring my NIS password. I cannot log in unless I use root access. It worked before and I think some of the settings changed since then. My boss has told me that since we're taking some... (1 Reply)
I'm collecting some info on the password hashing algorithms in use on various Unix systems. So far I have:
no $ legacy unix crypt
$1$ MD5
$2$ Blowfish on BSD
$2a$ alternate Blowfish on BSD
$md5$ Sun's alternate MD5
$3$ a Microsoft hash
$4$ not used?
$5$ RedHat proposed Sha-256... (2 Replies)
Hello there,
I hope that I am posting in the right section here, please advise if I posted wrong.
I currently try to change passwords in our Active Directory Envoirenment via LDAP on Linux since the users in question do not have access to a windows-machine and we want to keep it that way. ... (0 Replies)
Dears
I am running a shell script to backup (transfer) files to a networked External HDD. Even though the public key has been added it still asks for the password before starting the transfer.
Any suggestions?
Thanks in advance. (8 Replies)
So, I am writing a script that will read output from Bulk Extractor (which gathers data based on regular expressions). My script then reads the column that has the URL found, hashes it with MD5, then outputs the URL and hash to a file.
Where I am stuck on is that I want to read the bulk... (7 Replies)
Hi,
Our security audit person generated a report for Solaris-10 servers and mentioned this suggestion - "All passwords should be hashed using bcrypt. Solaris 10 supports this blowfish-based hash algorithm with the identifier 2a. To verify this, ensure the password hashes start with $2a$.... (2 Replies)
Discussion started by: solaris_1977
2 Replies
LEARN ABOUT ULTRIX
yppasswd
yppasswd(1yp)yppasswd(1yp)Name
yppasswd - change password in yellow pages (YP) service.
Syntax
yppasswd [ name ]
Description
The command lets you change your password in the yellow pages (YP) map, a network data base service. Only you or the superuser can change
your YP password.
When you enter the command, the program prompts you for the old password and then for the new password. Note that the passwords are not
displayed on the screen.
Next, the program asks you for the new password again, to verify that you have typed it correctly. If you do not type the passwords cor-
rectly, you will receive an error message after you enter the new password.
Your new YP password must meet one of the following requirements:
o It must be a combination of at least six alphanumeric characters, or
o It must be a minimum of four characters, with at least one being non-alphanumeric, such as a control sequence.
The command does not change the YP password. This command only changes the local password file and not the YP master password file. See
Chapter 3 of the Guide to the Yellow Pages Service for further information.
Diagnostics
Please use a longer password
Your new password does not meet the minimum length requirement.
Mismatch- password unchanged
You misspelled your new password or its verification.
couldn't change passwd
Your new password can not be activated. It must be different from your old password and your login name.
Files
Password file
Yellow Pages directory
See Alsopasswd(1), passwd(5yp), ypfiles(5yp), yppasswdd(8yp)
Guide to the Yellow Pages Service
yppasswd(1yp)