[arch-general] Upgrading password hashes
Tobias Frilling
tobias at frilling-online.de
Sat Jan 21 11:50:13 EST 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 01/21/2012 05:06 PM, Don Juan wrote:
> Then if the default is that then why are default system users, such as
> http mail postfix and similar not displaying the $1$ on the shadow file?
> Also according to the wiki it says des is the default and to upgrade the
> hashes out of the default. Am I not understanding it correctly in the
> wiki, and the users that I am talking about the hashes do not matter?
> Sorry feel confused at the moment.
>
A ! or x as the hash in /etc/shadow indicates that login for these user
is not permitted. (Also you may login using ssh-keys).
The CRYPT setting from /etc/default/passwd is only used if pam is not
enabled. If it is enabled, the used configs are in /etc/pam.d (e.g.
passwd, login etc.) which default nowadays to sha512.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJPGuy+AAoJEEDINPnaM7l+QGYH+we8QwHXO8OsAOEibRRAHz2j
hwWnXpitJVDLuxJ406F4DtbxXLMD2addtC1tQtSvKhcLAj1Q3bGoCEETqpUaSBTh
ZhZOeqBKKyP0BR980Qy3DRSHFWDkWY8ZpwgmutNj7QmmJt3NOwfdSZhzXVbqlx/u
vu3BsKAwuAeIE60HbJS4Ugn8VdUlY3HSp1EW0eR2sxb2x81y/T7YW7koBk6aVCv5
6pFqO8S+tgBQnh+5bvagBWvJq1zGGTA1A9sjCEYadynqEVjIY0i5ydsLQ2J+dhUG
hiWaGQu4JKBK7meAv5OBtfoewFEVQb4qYqYn1R1D4/Y1IuwTS60SW6nSO/UJrsw=
=Dcl9
-----END PGP SIGNATURE-----
More information about the arch-general
mailing list