Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need to disable CBC mode cipher encryption along with MD5 & 96 bit MAC algorithm
Operating Systems Solaris Need to disable CBC mode cipher encryption along with MD5 & 96 bit MAC algorithm Post 302979094 by jim mcnamara on Tuesday 9th of August 2016 07:49:53 AM
Old 08-09-2016
You want to stop encryption.

What exactly is being encrypted that causes a problem?
We need to see what is causing the problem, not what you believe will fix it. Please help us to help you.
 

7 More Discussions You Might Find Interesting

1. Cybersecurity

MD5 to DES encryption

Is it possible to change the type of encryption from MD5 to DES without removing a user? Way back when this server was created, users were created with the MD5 encryption. Now, all users created with DES encryption. Is it possible to just change the type of password encryption? Users using... (1 Reply)
Discussion started by: Larsonist
1 Replies

2. AIX

How to disable encryption below 128 bit in Websphere ?

Hi, Hi I have setup Websphere Portal and Apache server on Solaris. The problem is that clients are allowed to negotiate lower encryption levels and by default the Websphere Apache HTTP server accepts 56-bit keys (your Firefox client requested 256-bit AES below). So How to disable... (0 Replies)
Discussion started by: neel.gurjar
0 Replies

3. Solaris

md5 encryption on solaris 8

is there patches enable passwords of greater than 8 characters with only md5 encryption (rather than the older crypt) for solaris 8. I am migrating a number of solaris 8 domains to branded zones. (1 Reply)
Discussion started by: frustin
1 Replies

4. Cybersecurity

How to Disable Ciphers and Reconfigure Encryption?

Hello, I recently had a Retina scan of my system and there are some findings I do not understand. SSL Week Cipher Strength Supported - Retina has detected that the targeted SSL Service supports a cryptographically weak cipher strength... Disable ciphers that support less than 128-bit... (4 Replies)
Discussion started by: stringman
4 Replies

5. Cybersecurity

File encryption tools with MAC address as an encryption key

Hi all, I'm looking for secure file encryption tools that use MAC address as encryption key. FYI, I'm using Red Hat Enterprise Linux OS. For example: when A wants to send file to B A will encrypt the file with B's computer MAC/IP address as an encryption key This file can only be decrypted... (2 Replies)
Discussion started by: sergionicosta
2 Replies

6. Solaris

Solaris 8 MD5 encryption support

Hi, I did some NIS migration tests recently. The target is to migrate the NIS server from Solaris 8 to Redhat Linux 6.5. And, I found there are encryption issues while Linux NIS using MD5 hashing password for authentication whereas Solaris 8 clients using DES encryption. It causes issues... (3 Replies)
Discussion started by: bestard
3 Replies

7. UNIX for Advanced & Expert Users

Disabling CBC Cipher mode causes login problems

Hi, As part of the security hardening activity in our team, we have to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption. To do this, in sshd_config I comment out these lines : Ciphers aes128-cbc,blowfish-cbc,3des-cbc MACS hmac-sha1,hmac-md5 and add... (9 Replies)
Discussion started by: anaigini45
9 Replies

LEARN ABOUT OSF1

dispcrypt

dispcrypt(3)						     Library Functions Manual						      dispcrypt(3)

NAME

       dispcrypt - encrypt a password, dispatching based on the associated algorithm (Enhanced Security)

LIBRARY

       Security Library (libsecurity.so)

       In order to quickstart a program, the program must be linked as follows:

	    -lsecurity -ldb -laud -lm

       See the shared library discussion in the Programmer's Guide for more information about using the quickstarting feature.

SYNOPSIS

       #include <prot.h>

       char *discprypt(
	    const char *plaintext,
	    const char *salt,
	    int algorithm_index);

PARAMETERS

       plaintext   The unencrypted password to be encrypted.

       salt	   A  string value which may be used as input to the selected encryption algorithm.  This parameter should be at least two charac-
		   ters in length, and null-terminated.  For password validation, it should be the encrypted password which is already in use.

       algorithm_index
		   A value from 0 to (get_num_crypts()-1), indicating which encryption algorithm is to be used.  For password validation, use  the
		   fd_oldcrypt	field  of  an es_passwd structure.  For password generation, use the fd_newcrypt field (and update the fd_oldcrypt
		   field at the same time as the fd_encrypt field if the change is successful).

DESCRIPTION

       The dispcrypt() function applies the specified encryption algorithm to the given password string and salt value, and returns the  encrypted
       form of the password.  The return value is static data which is overwritten on subsequent calls to this function or to the encryption algo-
       rithms which it calls, so callers should save a copy of the string unless the only use is an immediate comparison during  password  valida-
       tion.

RETURN VALUES

       This  routine returns NULL if there is an encryption failure.  Otherwise, it returns a pointer to static data, which is the null-terminated
       encrypted password result.

RELATED INFORMATION

       passwd(1), getespwent(3), get_num_crypts(3)

       Security delim off

																      dispcrypt(3)
All times are GMT -4. The time now is 03:09 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy