|
Grex > Garage > #27: Proposal: Eliminate grex's custom password hash. | |
|
| Author |
Message |
| 8 new of 82 responses total. |
cross
|
|
response 75 of 82:
| 
Jul 1 17:25 UTC 2007 |
Welcome back! :-)
|
cross
|
|
response 76 of 82:
|
Jul 3 02:33 UTC 2007 |
We're down to exactly one user using the grexhash system. If we can
get that user to login, we can safely eliminate the custom hashing code
in the coming upgrade.
|
gull
|
|
response 77 of 82:
|
Aug 22 17:08 UTC 2007 |
That might be me. I just tried to change mine, but it won't let me. I
get 'passwd: Permission denied.'
|
cross
|
|
response 78 of 82:
|
Aug 22 18:11 UTC 2007 |
No, it's not you, but the problem with changing your password is almost
certainly that you have a custom PATH that doesn't include /suid/bin before
/usr/bin.
|
gull
|
|
response 79 of 82:
|
Aug 22 19:04 UTC 2007 |
Looks like the problem is my path includes /usr/local/bin before
/suid/bin. I'm not sure how that's happening. I don't set PATH in my
.profile.
|
cross
|
|
response 80 of 82:
|
Aug 22 20:58 UTC 2007 |
Hmm; that's actually right.
|
cross
|
|
response 81 of 82:
|
Aug 22 21:00 UTC 2007 |
Okay, there's a wrapper script in /usr/local/bin that had the path to the real
password changing utility incorrect. I have corrected it.
|
cross
|
|
response 82 of 82:
|
May 16 03:13 UTC 2017 |
Well, nearly ten years have passed and much has changed. OpenBSD has
been upgraded to version 6.1, and SHA-1 has been broken. Good thing we
changed to bcrypt!
|