OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Andrew (andrewugh.net.au)
Date: Sun Mar 03 2002 - 17:36:33 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Hi,

    I am trying to sync passwords between Solaris and FreeBSD 4.5. For most
    users it works fine but certain users get authentication failures under
    FreeBSD.

    The encrypted passwords are the same on both OSs but crypt returns
    different results. Is this a bug? Is Solaris using something other than
    straight DES (I'm not a Solaris person so I'm not sure where to look for
    that)?

    The code I used to test is appended below. I've tried from C as well just
    to make sure it wasn't a perl bug (not to mention the users can't check
    their mail via POP etc).

    Thanks,

    Andrew 

    --

    #!/usr/bin/perl

    ($login, $spass, $uid) = getpwnam($ARGV[0]);
print('Password: ');
$upass = <STDIN>;
chomp($upass);

    print('System: ', $spass, "\n");
print('User:   ', crypt($upass, $spass), "\n");

    if (crypt($upass, $spass) eq $spass) {
    print("yes\n");
} else {
    print("no\n");
}

    To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message