Off Topic Telnet problems
Fairlight
fairlite at fairlite.com
Tue Mar 17 23:25:47 PDT 2009
On Tue, Mar 17, 2009 at 05:52:54PM -0400, J. P. Radley, the prominent pundit,
witicized:
> | Actually, does OSR5 (or even 6) support anything but DES for passwords?
> | SHA1, MD5, or BlowFish, maybe? If not, why even bother? The pool for
> | salts is only 4096 deep with DES, as I remember Bill Vermillion pointing
> | out on numerous occasions. You don't even need distributed computing to
> | crack that in a reasonable time, given today's horsepower.
>
> Ssh on both OSR 5 and OSR 6 knows 3des, blowfish, des, des-cbc,
> aes128-cbc, aes192-cbc, aes256-cbc, aes128-ctr, aes192-ctr, aes256-ctr,
> arcfour128, arcfour256, arcfour, blowfish-cbc, and cast128-cbc.
Didn't ask about ssh. Heck, ssh wasn't even included stock on OSR5 until
5.0.7, if memory serves.
Asked about OSR5 itself. I don't think PAM is stock on OSR5 -or- OSR6,
is it? If not, what happens when you put any of those encryption results
into /etc/passwd? I'm pretty sure telnetd and any stock pop3, ftp, etc.,
daemons would fail on them individually, and without PAM as a shim...
*poof*
So unless you want to (re)compile half your auth system, and a bunch of
applications that need to depend upon it (doing so will also nicely get
around license user limits that the stock telnetd enforces, however...at
least it used to years ago--that may no longer apply), what exactly do
OSR5 & OSR6 support?
mark->
--
"I'm not subtle. I'm not pretty, and I'll piss off a lot of people along
the way. But I'll get the job done" --Captain Matthew Gideon, "Crusade"
More information about the Filepro-list
mailing list