src-test2/lib/libcrypt, branch release/2.1.6_cvs FreeBSD source tree https://cgit-dev.freebsd.org/src-test2/atom?h=release%2F2.1.6_cvs 1997-02-05T04:29:56Z This commit was manufactured by cvs2svn to create tag 1997-02-05T04:29:56Z cvs2svn cvs2svn@FreeBSD.org 1997-02-05T04:29:56Z urn:sha1:860c2cf2bc6592828a3468ab8ee661042b059ae8 'RELENG_2_1_6_RELEASE'. This commit was manufactured to restore the state of the 2.1.6-RELEASE image. Releases prior to 5.3-RELEASE are omitting the secure/ and crypto/ subdirs. This 3rd mega-commit should hopefully bring us back to where we were. 1996-06-05T02:59:00Z Jordan K. Hubbard jkh@FreeBSD.org 1996-06-05T02:59:00Z urn:sha1:78e55a1f29558e8be54566ead1e7be8ab9d45273 I can get it to `make world' succesfully, anyway! Remove trailing whitespace. 1995-05-30T05:51:47Z Rodney W. Grimes rgrimes@FreeBSD.org 1995-05-30T05:51:47Z urn:sha1:6c06b4e2aa2a28d1f0bbd29ecdce35aaaf600ce8 Install shared libraries in ${DESTDIR}${SHLIBDIR} instead of in 1994-11-14T06:44:45Z Bruce Evans bde@FreeBSD.org 1994-11-14T06:44:45Z urn:sha1:643c00317eed22e8c23def748ed40e59b832ad7d $(DESTDIR)/$(LIBDIR) (I need SHLIBDIR. The / was a bug and the $(...) style was inconsistent.) Install ordinary libraries in ${DESTDIR}${LIBDIR} instead of in $(DESTDIR)/$(LIBDIR). Change remaining $(...) to ${...}. *** ATTENTION *** YOU MIGHT BE ABOUT TO BE HOSED *** ATTENTION *** 1994-11-07T21:07:09Z Poul-Henning Kamp phk@FreeBSD.org 1994-11-07T21:07:09Z urn:sha1:3b2b7f71deba2a4efbd218d235ab774397500242 This effectively changes the non-DES password algoritm. If you have the "securedist" installed you will have no problems with this. (Though you might want to consider using this password-encryption instead of the DES-based if your system is likely to be hacked) If you are running a -current system without the "securedist" installed: YOU WILL NEED TO CHANGE ALL PASSWORDS !! There is no backwards mode. Suggested procedure is: Update your sources cd /usr/src/lib/libcrypt make clean make all make install passwd root <set roots new password> change password for any other users on the system. This algorithm is expected to be much better than the traditional DES- based algorithm. It uses the MD5 algorithm at what it is best at, as opposed to the DES algorithm at something it isn't good at at all. The algorithm is designed such that it should very hard to shortcut the calculations needed to build a dictionary, and to make partial knowledge (Hmm, his password starts with a 'P'...) useless. Of course if somebody breaks the MD5 algorithm this looses too. The salt is 48 bits (8 char @ base64). The encrypted password is 128 bits. And I am positively delighted to say that it takes 34 msec to crypt() a password on a Pentium/60Mhz, so building a dictionary is not really an option for hackers at the moment. Fix afterinstall rule for generating links to the real libcrypt 1994-08-20T18:13:59Z Geoff Rehmet csgr@FreeBSD.org 1994-08-20T18:13:59Z urn:sha1:c8023944f89bc5c6888bc85a7d3cb6ca161a3ba5 Submitted by: geoff Fix afterinstall rule for NOSHARED case 1994-08-12T21:12:37Z Geoff Rehmet csgr@FreeBSD.org 1994-08-12T21:12:37Z urn:sha1:a54d939519f2047998f076d4b86f31dbab85e6db Submitted by: Geoff Rehmet The password scrambler now becomes libscrypt, and libcrypt is 1994-08-09T18:49:04Z Geoff Rehmet csgr@FreeBSD.org 1994-08-09T18:49:04Z urn:sha1:f5db7b1cf97848730f2c71bf28bc0ea33250fd02 a symlink to it. (The real libcrypt will be installed as libdescrypt.) Submitted by: Geoff. Nates password scrambler, from FreebSD 1.1.5, but with everything except 1994-08-09T17:07:27Z Geoff Rehmet csgr@FreeBSD.org 1994-08-09T17:07:27Z urn:sha1:0e27b8d587f5e89fe4f0920e8efb06f4f6eba863 crypt() ripped out Reviewed by: Geoff Rehmet Submitted by: Nate Williams