Hello,
I'm having an issue with my password hashing. In /etc/shadow all the passwords hashes start with $1$. The security people want me to change it so the password hash starts with $5$ or $6$. So this is what I did to fix this.
I changed CRYPT_DEFAULT for 1 to 6
Code:
CRYPT_DEFAULT=6
When I create a new account, the account uses the new password hashing method, but when I change an existing accounts password it still uses the old method. I'm thinking that I need to restart something but I don't know what.
Any help would be great.
---------- Post updated at 01:04 PM ---------- Previous update was at 12:04 PM ----------
---------- Post updated at 01:41 PM ---------- Previous update was at 01:04 PM ----------
Ok I have the answer now.
To set the password with the new hash you have to remove the old password 1st. You do that by using the -d option.
Code:
passwd -d root
passwd root
New Password:
re-enter new password:
password: password successfully changed for root
Now the password hash starts with $6$
I hope this helps someone
These 2 Users Gave Thanks to bitlord For This Post:
Hi,
Our security audit person generated a report for Solaris-10 servers and mentioned this suggestion - "All passwords should be hashed using bcrypt. Solaris 10 supports this blowfish-based hash algorithm with the identifier 2a. To verify this, ensure the password hashes start with $2a$.... (2 Replies)
So, I am writing a script that will read output from Bulk Extractor (which gathers data based on regular expressions). My script then reads the column that has the URL found, hashes it with MD5, then outputs the URL and hash to a file.
Where I am stuck on is that I want to read the bulk... (7 Replies)
Dears
I am running a shell script to backup (transfer) files to a networked External HDD. Even though the public key has been added it still asks for the password before starting the transfer.
Any suggestions?
Thanks in advance. (8 Replies)
Hello there,
I hope that I am posting in the right section here, please advise if I posted wrong.
I currently try to change passwords in our Active Directory Envoirenment via LDAP on Linux since the users in question do not have access to a windows-machine and we want to keep it that way. ... (0 Replies)
I'm collecting some info on the password hashing algorithms in use on various Unix systems. So far I have:
no $ legacy unix crypt
$1$ MD5
$2$ Blowfish on BSD
$2a$ alternate Blowfish on BSD
$md5$ Sun's alternate MD5
$3$ a Microsoft hash
$4$ not used?
$5$ RedHat proposed Sha-256... (2 Replies)
HI. I was wondering if anyone can assist me in this. I have an HP-UX 11.31 server at work which keeps expiring my NIS password. I cannot log in unless I use root access. It worked before and I think some of the settings changed since then. My boss has told me that since we're taking some... (1 Reply)
Hi,
I'm looking for linear hashing implementation in C language. Please help.
PS: I have implement this on Ubuntu 10.04 Linux on 64 bit machine. (1 Reply)
Hi,
how can one find that which encryption algorithm the system is using for keeping the user password in the /etc/passwd or /etc/shadow file.
Is it
1: Hashing ( which considers only first 5 letters of password)
2: MD5 (Which allows arbitry length passwords)
Thanks,
~amit (0 Replies)
09-24-2012
