What is the max password length for Solaris 8 and 9?
|
|
0
|
|
|
|
Reply
|
 David
|
4/12/2005 3:20:35 PM |
|
For Solaris 8 = 8
"David" <dthibodo@moc.tn.10msacirema> a �crit dans le message de
news:d3gp04$2k5$1@zcars129.ca.nortel.com...
> What is the max password length for Solaris 8 and 9?
>
>
|
|
|
0
|
|
|
|
Reply
|
ns
|
4/12/2005 3:43:43 PM
|
|
On Tue, 12 Apr 2005, David wrote:
> What is the max password length for Solaris 8 and 9?
For Solaris 8 and earlier releases of S9, the first 8 characters are
significant. With later releases of S9, several password encrpytion
methods are supported. The default one is still limited to 8 chars,
but other schemes (e.g., Blowfish or md5) permit up to 255.
See the crypt_gensalt man page or my book, Solaris Systems Programming,
for more info.
-
Rich Teer, SCNA, SCSA, OpenSolaris CAB member
President,
Rite Online Inc.
Voice: +1 (250) 979-1638
URL: http://www.rite-group.com/rich
|
|
|
0
|
|
|
|
Reply
|
Rich
|
4/12/2005 4:28:02 PM
|
|
Rich Teer <rich.teer@rite-group.com> wrote:
> On Tue, 12 Apr 2005, David wrote:
>> What is the max password length for Solaris 8 and 9?
> For Solaris 8 and earlier releases of S9, the first 8 characters are
> significant. With later releases of S9, several password encrpytion
> methods are supported. The default one is still limited to 8 chars,
> but other schemes (e.g., Blowfish or md5) permit up to 255.
> See the crypt_gensalt man page or my book, Solaris Systems Programming,
> for more info.
crypt_gensalt man page does not give the answer that he requested.
While page 252 of SSP references crypt_gensalt(), the demonstration
given there is technically inadequate.
--
Thomas E. Dickey
http://invisible-island.net
ftp://invisible-island.net
|
|
|
0
|
|
|
|
Reply
|
Thomas
|
4/15/2005 10:09:21 AM
|
|
Rich Teer <rich.teer@rite-group.com> writes:
> For Solaris 8 and earlier releases of S9, the first 8 characters
> are significant. With later releases of S9, several password
> encrpytion methods are supported. The default one is still limited
> to 8 chars, but other schemes (e.g., Blowfish or md5) permit up to
> 255.
As an aside, Solari 9+ now supports BSD's MD5 hashing algorithm and
it's own MD5 algorithm.
Are there any details on the how and why of the Solaris MD5? (I'm
assume that the why is because it's more secure / resistant to
attacks in some way.)
--
David Magda <dmagda at ee.ryerson.ca>, http://www.magda.ca/
Because the innovator has for enemies all those who have done well under
the old conditions, and lukewarm defenders in those who may do well
under the new. -- Niccolo Machiavelli, _The Prince_, Chapter VI
|
|
|
0
|
|
|
|
Reply
|
David
|
4/15/2005 11:00:20 PM
|
|
Rich Teer wrote:
> > What is the max password length for Solaris 8 and 9?
>
> For Solaris 8 and earlier releases of S9, the first 8 characters are
> significant. With later releases of S9, several password encrpytion
> methods are supported. The default one is still limited to 8 chars,
> but other schemes (e.g., Blowfish or md5) permit up to 255.
AFAIK the limit of 8 significant chars does not exist when you use
something like NIS+ or Kerberos, right ?
----
Bye,
Roland
--
__ . . __
(o.\ \/ /.o) roland.mainz@nrubsig.org
\__\/\/__/ MPEG specialist, C&&JAVA&&Sun&&Unix programmer
/O /==\ O\ TEL +49 641 7950090
(;O/ \/ \O;)
|
|
|
0
|
|
|
|
Reply
|
Roland
|
4/17/2005 1:58:57 AM
|
|
On Sun, 17 Apr 2005, Roland Mainz wrote:
> AFAIK the limit of 8 significant chars does not exist when you use
> something like NIS+ or Kerberos, right ?
Not sure (no experience in either environment), but I guess it depends
on what the backend supports, and what apps use to collect a password
(e.g., getpass() vs getpassphrase()).
-
Rich Teer, SCNA, SCSA, OpenSolaris CAB member
President,
Rite Online Inc.
Voice: +1 (250) 979-1638
URL: http://www.rite-group.com/rich
|
|
|
0
|
|
|
|
Reply
|
Rich
|
4/17/2005 6:35:41 AM
|
|
|
6 Replies
561 Views
(page loaded in 0.123 seconds)
|
Search |
Post Question |
Groups |
Stream |
About |
Register
25729 articles. 
78 followers. 