Results 1 to 4 of 4

Thread: how do you change the hash used by yppasswd?

  1. #1
    Join Date
    Aug 2007
    Beans
    7
    Distro
    Ubuntu

    Cool how do you change the hash used by yppasswd?

    Does anyone know how to change the hash used by yppasswd in ubuntu? The default is DES. I would like to at least use MD5. Changing pam_unix2.conf doesn't seem to be doing anything.

    thanks

  2. #2
    Join Date
    Aug 2007
    Beans
    7
    Distro
    Ubuntu

    Re: how do you change the hash used by yppasswd?

    Figured it out... add nis to the end of the line

    password [success=1 default=ignore] pam_unix.so obscure sha512

    in /etc/pam.d/common-password

    Also, there seems to be a bug where it asks for your password twice when you use sha512. Could be related to other configuration. If you change it to MD5, no problems.

  3. #3
    Join Date
    Aug 2006
    Beans
    1,223

    Re: how do you change the hash used by yppasswd?

    MD5 has been broken, don't use it.
    There's no place like ~/

  4. #4
    Join Date
    Aug 2007
    Beans
    7
    Distro
    Ubuntu

    Re: how do you change the hash used by yppasswd?

    Bug was related to the way I was including the unix2 pam module for blowfish support. I have since fixed that and switched back to sha512. Either way, hashing passwords regardless of the algorithm or salting isn't ideal. Our security model around here is admittedly not that strong.

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •