From owner-FreeBSD-users-jp@jp.freebsd.org  Sat Feb  5 00:26:03 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id AAA28434;
	Sat, 5 Feb 2000 00:26:03 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from toyokawa.gcd.org (qmailr@toyokawa.gcd.org [210.161.209.178])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id AAA28429
	for <FreeBSD-users-jp@jp.freebsd.org>; Sat, 5 Feb 2000 00:26:02 +0900 (JST)
	(envelope-from hiroo@oikumene.gcd.org)
Received: (qmail 15236 invoked by uid 10); 5 Feb 2000 00:26:01 +0900
Received: (qmail 23710 invoked from network); 4 Feb 2000 15:24:45 -0000
Received: from chrysanthe.oikumene.gcd.org (HELO localhost) (192.168.0.12)
  by ns.oikumene.gcd.org with SMTP; 4 Feb 2000 15:24:45 -0000
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: <20000202001218I.hiroo@oikumene.gcd.org>
References: <3896DA92.7081CBFF@dnet.co.jp>
	<20000202001218I.hiroo@oikumene.gcd.org>
	<20000203181344.A39313@enterprise.sanyusan.se>
	<Pine.BSF.4.21.0002031004440.11281-100000@freefall.freebsd.org>
	<200002041311.e14DBvw99829@gratis.grondar.za>
X-Mailer: Mew version 1.94 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20000205002444V.hiroo@oikumene.gcd.org>
Date: Sat, 05 Feb 2000 00:24:44 +0900
From: Hiroo ONO <hiroo@oikumene.gcd.org>
X-Dispatcher: imput version 990905(IM130)
Lines: 61
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: FreeBSD-users-jp 49616
Subject: [FreeBSD-users-jp 49616] Re: DES =?ISO-2022-JP?B?GyRCJEgbKEI=?=
 MD5
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: hiroo@oikumene.gcd.org

$B>.Ln42@8$G$9!#(B

From: Hiroo ONO <hiroo@oikumene.gcd.org>
Date: Wed, 02 Feb 2000 00:12:18 +0900

> From: Shinji Kotoku <kotoku@dnet.co.jp>
> Date: Tue, 01 Feb 2000 22:07:30 +0900
> 
> > $B$U$H!"%Q%9%o!<%I%U%!%$%k$r8+$k$H(B
> > FreeBSD-2.2.8 $B$O!"(BMD5
> > FreeBSD-3.3 $B$O!"(BDES $B$N$h$&$J$N$G$9!#(B
> 
> $BA4$/5$$E$$$F$$$^$;$s$G$7$?(B (^^;$B!#(B2000/01/21 $B$N(B 3.4-stable $B$G3NG'$7$^$7(B
> $B$?!#(B/etc/master.passwd $B$,=PMh$?$N$O(B 3.3R $B$r%$%s%9%H!<%k$7$?;~$J$N$G$9(B
> $B$,!"%$%s%9%H!<%k;~$K(B DES $B$rF~$l$?0Y$+!"3N$+$K(B password $B$,(B DES $B$K$J$C$F!"(B
> $B$7$+$b(B 8$BJ8;z$^$G$7$+$_$F$/$l$F$$$^$;$s!#(B

  2/3 $B$N(B current $B$K0J2<$N$h$&$JOC$,$"$j$^$9!#(B
  $B%$%s%9%H!<%k;~$K(Bdes $B$r$$$l$k$H(B libcrypt.{a,so} $B$,(B libdescrypt.{a,so} 
$B$X$N(B symbolic link $B$K$J$C$F$7$^$&0Y$K!"%Q%9%o!<%I$,(B DES $B$K$J$C$F$7$^$&(B
$B$H$$$&$3$H$N$h$&$G$9!#(B
  $B$3$NF0:n$O$O$k$+@N$+$i!#(B
# $B$G!"(B/usr/src/lib/libcrypt $B$G(B libcrypt $B$r(B make install $B$7$J$*$;$P$h$$(B
# $B$H$$$&$3$H$i$7$$!#(B

  $B$G$b$C$F!"(Bauth.conf $B$NOC$b=P$F$$$^$9$,!"(BDavid O'Brien $B$5$s$,(B PAM $B$G(B
$B$J$s$H$+$9$k$N$,$h$$$H;W$&$N$G!"<BAu$7$?$$$J$H$*$C$7$c$C$F$$$^$9!#(B
# $B1Q8l$r@5$7$/M}2r=PMh$F$$$l$P!#(B

From: Kris Kennaway <kris@FreeBSD.org>
Subject: Re: libcrypto (DES - MD5)
Date: Thu, 3 Feb 2000 10:09:22 -0800 (PST)

> On Thu, 3 Feb 2000, Anders Andersson wrote:
> 
> > I add a new user, and with 'vipw' I notices that this user now gets a
> > DES based passwd. (we only use MD5 passwords around). Then I looked in
> > /usr/lib and noticed that libcrypt now is symlinked to libdescrypt:
> 
> AFAIK this has always been the way it works: if you install libdescrypt,
> the system makes the (mistaken) assumption you want DES passwords all the
> time. For now, just repoint the symlinks and edit out the build of
> secure/lib/libcrypt - a proper fix might be to add a login class which
> determines which of MD5 and DES you should use for new passwords, but I
> won't be able to get that committed until after 4.0.

From: Mark Murray <mark@grondar.za>
Subject: Re: libcrypto (DES - MD5) 
Date: Fri, 04 Feb 2000 15:11:57 +0200

David O'Brien $B$5$s(B
> > I believe PAM is the more "approved" way to implement this
> > functionality.  Before PAM it would be /etc/auth.conf.
> > 
> > I wanted to add this functionality over a year ago, but Markm asked me to
> > wait for PAM and that he was working on an implementation using that.

Mark Murray $B$5$s(B
> You want to work on PAM's, go ahead!
----
Hiroo ONO
