[solved] Password hashing Post: 302705217

Sponsored Content

Operating Systems Solaris [solved] Password hashing Post 302705217 by bitlord on Monday 24th of September 2012 01:41:40 PM

09-24-2012

Registered User

[solved] Password hashing

Hello,
I'm having an issue with my password hashing. In /etc/shadow all the passwords hashes start with $1$. The security people want me to change it so the password hash starts with $5$ or $6$. So this is what I did to fix this.
I changed CRYPT_DEFAULT for 1 to 6

Code:

 CRYPT_DEFAULT=6

When I create a new account, the account uses the new password hashing method, but when I change an existing accounts password it still uses the old method. I'm thinking that I need to restart something but I don't know what.

Any help would be great.

---------- Post updated at 01:04 PM ---------- Previous update was at 12:04 PM ----------

---------- Post updated at 01:41 PM ---------- Previous update was at 01:04 PM ----------

Ok I have the answer now.

To set the password with the new hash you have to remove the old password 1st. You do that by using the -d option.

Code:

passwd -d root
passwd root
New Password:
re-enter new password:
password: password successfully changed for root

Now the password hash starts with $6$

I hope this helps someone

These 2 Users Gave Thanks to bitlord For This Post:

bitlord

View Public Profile for bitlord

Find all posts by bitlord

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Hashing or MD5

Hi, how can one find that which encryption algorithm the system is using for keeping the user password in the /etc/passwd or /etc/shadow file. Is it 1: Hashing ( which considers only first 5 letters of password) 2: MD5 (Which allows arbitry length passwords) Thanks, ~amit

2. UNIX for Dummies Questions & Answers

How to analyze file hashing

What command should I use to analyze file hashing of fixed flat files. How much work does it take for multiple flat files.

3. Programming

Linear hashing implementation in C language

Hi, I'm looking for linear hashing implementation in C language. Please help. PS: I have implement this on Ubuntu 10.04 Linux on 64 bit machine.

4. HP-UX

Solved -- Problems with NIS Password Expiration...

HI. I was wondering if anyone can assist me in this. I have an HP-UX 11.31 server at work which keeps expiring my NIS password. I cannot log in unless I use root access. It worked before and I think some of the settings changed since then. My boss has told me that since we're taking some...

5. UNIX for Advanced & Expert Users

password hashing algorithms

I'm collecting some info on the password hashing algorithms in use on various Unix systems. So far I have: no $ legacy unix crypt $1$ MD5 $2$ Blowfish on BSD $2a$ alternate Blowfish on BSD $md5$ Sun's alternate MD5 $3$ a Microsoft hash $4$ not used? $5$ RedHat proposed Sha-256...

6. UNIX for Advanced & Expert Users

[SOLVED] LDAP Constraint Violation while changing password

Hello there, I hope that I am posting in the right section here, please advise if I posted wrong. I currently try to change passwords in our Active Directory Envoirenment via LDAP on Linux since the users in question do not have access to a windows-machine and we want to keep it that way. ...

7. Shell Programming and Scripting

[Solved] Password query even after adding public key

Dears I am running a shell script to backup (transfer) files to a networked External HDD. Even though the public key has been added it still asks for the password before starting the transfer. Any suggestions? Thanks in advance.

8. Shell Programming and Scripting

Hashing URLs

So, I am writing a script that will read output from Bulk Extractor (which gathers data based on regular expressions). My script then reads the column that has the URL found, hashes it with MD5, then outputs the URL and hash to a file. Where I am stuck on is that I want to read the bulk...

9. Solaris

Hashing password with bcrypt in Solaris 10

Hi, Our security audit person generated a report for Solaris-10 servers and mentioned this suggestion - "All passwords should be hashed using bcrypt. Solaris 10 supports this blowfish-based hash algorithm with the identifier 2a. To verify this, ensure the password hashes start with $2a$....

LEARN ABOUT ULTRIX

yppasswd

yppasswd(1yp) yppasswd(1yp)

Name
yppasswd - change password in yellow pages (YP) service.

Syntax
yppasswd [ name ]

Description
The command lets you change your password in the yellow pages (YP) map, a network data base service. Only you or the superuser can change
your YP password.

When you enter the command, the program prompts you for the old password and then for the new password. Note that the passwords are not
displayed on the screen.

Next, the program asks you for the new password again, to verify that you have typed it correctly. If you do not type the passwords cor-
rectly, you will receive an error message after you enter the new password.

Your new YP password must meet one of the following requirements:

o It must be a combination of at least six alphanumeric characters, or

o It must be a minimum of four characters, with at least one being non-alphanumeric, such as a control sequence.
The command does not change the YP password. This command only changes the local password file and not the YP master password file. See
Chapter 3 of the Guide to the Yellow Pages Service for further information.

Diagnostics
Please use a longer password
Your new password does not meet the minimum length requirement.

Mismatch- password unchanged
You misspelled your new password or its verification.

couldn't change passwd
Your new password can not be activated. It must be different from your old password and your login name.

Files
Password file

Yellow Pages directory

See Also
passwd(1), passwd(5yp), ypfiles(5yp), yppasswdd(8yp)
Guide to the Yellow Pages Service

yppasswd(1yp)