newusers, liboobs uses crypt insted of md5, intrepid installer doesn't use sha512
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
liboobs (Ubuntu) |
Fix Released
|
Medium
|
Kees Cook | ||
migration-assistant (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
shadow (Ubuntu) |
Fix Released
|
Medium
|
Kees Cook | ||
user-setup (Ubuntu) |
Fix Released
|
Medium
|
Evan |
Bug Description
Binary package hint: passwd
initially sent to the ubuntu-users mailing list when reported by the user using reportbug
---------- Forwarded message ----------
From: "Dr. Markus Waldeck" <email address hidden>
To: Ubuntu Bug Tracking System <email address hidden>
Date: Sat, 01 Jul 2006 08:24:34 -0400
Subject: passwd: newusers uses crypt insted of md5
Package: passwd
Version: 1:4.0.3-
Severity: normal
MD5 passwords are activated via pam
/etc/pam.
password required pam_unix.so nullok obscure min=4 max=8 md5
If I use newusers to generate them they will receive a "crypt"ed
password!
I could not figure out why debcoof claims: passwd/md5: false
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.11-1-686-smp
Locale: LANG=C, LC_CTYPE=C (charmap=
Versions of packages passwd depends on:
ii libc6 2.3.5-1ubuntu8 GNU C Library: Shared libraries an
ii libpam-modules 0.76-22 Pluggable Authentication Modules f
ii libpam0g 0.76-22 Pluggable Authentication Modules l
ii login 1:4.0.3-
-- debconf information:
passwd/
passwd/
* passwd/username: waldeck
passwd/
* passwd/make-user: true
passwd/md5: false
passwd/title:
passwd/
passwd/
* passwd/shadow: true
passwd/
* passwd/
Changed in migration-assistant: | |
importance: | Undecided → Medium |
status: | New → Triaged |
Changed in liboobs: | |
status: | New → Triaged |
Changed in migration-assistant: | |
status: | Triaged → Fix Committed |
Changed in user-setup: | |
status: | Triaged → Fix Released |
status: | Fix Released → Fix Committed |
Changed in liboobs: | |
assignee: | nobody → james-w |
Changed in shadow: | |
assignee: | nobody → kees |
Changed in liboobs: | |
milestone: | none → jaunty-alpha-2 |
Changed in user-setup: | |
assignee: | nobody → evand |
Changed in migration-assistant: | |
assignee: | nobody → evand |
milestone: | none → jaunty-alpha-2 |
Changed in shadow: | |
milestone: | none → jaunty-alpha-1 |
Changed in user-setup: | |
milestone: | none → jaunty-alpha-2 |
Changed in migration-assistant (Ubuntu): | |
assignee: | Evan Dandrea (ev) → nobody |
status: | Fix Committed → Fix Released |
I confirm that I just demonstrated this behavior exists on my Feisty install on my laptop. I made a user ubu3, and it's password in shadow does NOT being with $1$.