Re: password length

To: Alexander Hvostov <vulture@aoi.dyndns.org>
Cc: Ethan Benson <erbenson@alaska.net>, ravengrey@iname.com, Kevin <cog@iwz.com>, debian-security@lists.debian.org
Subject: Re: password length
From: Ted Cabeen <secabeen@pobox.com>
Date: Thu, 16 Mar 2000 09:06:46 -0600
Message-id: <[🔎] 200003161506.JAA02027@entropy.uchicago.edu>
In-reply-to: Your message of "Wed, 15 Mar 2000 21:15:39 PST." <[🔎] Pine.LNX.4.21.0003152113560.658-100000@cornerstone.core.aoi>

In message <[🔎] Pine.LNX.4.21.0003152113560.658-100000@cornerstone.core.aoi>, Alexa
nder Hvostov writes:
>MD5 as an algorithm supports a theoretically infinitely sized password (or
>other string), though of course it becomes less secure as the string's
>size increases. That said, I think the maximum password length supported
>by glibc (and, thus, PAM) is 128 bytes long.

Are the MD5 passwords affected by the max=8 setting in the pam.d/passwd 
entry, or does it ignore them?

--
Ted Cabeen           http://www.pobox.com/~secabeen         secabeen@pobox.com
Check Website or finger for PGP Public Key        secabeen@midway.uchicago.edu
"I have taken all knowledge to be my province." -F. Bacon   cococabeen@aol.com
"Human kind cannot bear very much reality."-T.S.Eliot 73126.626@compuserve.com

Reply to:

References:
- Re: password length
  - From: Alexander Hvostov <vulture@aoi.dyndns.org>

Prev by Date: [no subject]
Next by Date: Re: password length
Previous by thread: Re: password length
Next by thread: Re: password length
Index(es):
- Date
- Thread