[tac_plus] Re: Password Bug
Kiss Gabor (Bitman)
kissg at ssg.ki.iif.hu
Wed Sep 5 14:27:05 UTC 2007
> > If I encrypt the word "password1" I can use just about any variation
> > of
> > password* and get in. password, password1,password2, password45...
> > they
> > all will log me in. That is a big security hole.
>
> This is not a bug but a fea^H^H^Hlimitation.
> Only the first 8 chars of DES encrypted passwords are significant.
>
> However it would be easy to add MD5 password
> enryption... I think over it.
On Linux systems GNU libcrypt has crypt() function that
transparently handles MD5 encrypted paswords. So if your
tac_plus runs on a host with GNU libc/libcrypt you can write this:
user = harpo {
login = des $1$F9FIvi0b$oLW5gsIQjQyYNUf4cp0Eb/
}
So you can use passwords of any length.
Gabor
More information about the tac_plus
mailing list