Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
09-20-2006, 10:35 AM
|
#1
|
|
LQ Newbie
Registered: May 2006
Posts: 13
Rep: 
|
Password problems
Hello
I seem to be having a unique problem with respect to passwords.
I have a SUN x20z server running Redhat ES 4.0.
The problem is this -
When i type in my correct password and then continue with a few more extra characters or as many as i want, the password is still accepted as correct.
Should it not abort saying it is a wrong password?
eg: if the password is abc123 - I could type 'abc123jhdjdsh' and it is still accepted and lets me login.
Why is this happening? Any help is appreciated.
Thank you
Kiran
|
|
|
|
|
09-20-2006, 10:51 AM
|
#2
|
|
Member
Registered: May 2004
Location: Karlsruhe, Germany
Distribution: debian, gentoo, os x (darwin), ubuntu
Posts: 940
Rep: 
|
do you have shadow passwords enabled?
|
|
|
|
|
09-20-2006, 11:14 AM
|
#3
|
|
Senior Member
Registered: Dec 2005
Location: Massachusetts, USA
Distribution: Ubuntu 10.04 and CentOS 5.5
Posts: 3,873
|
I have seen this on Sun OS/Solaris. In that case the login process only pays attention to the first eight characters entered and ignores the rest. I have no idea about Red Hat.
Red Hat should be using PAM. In that case you can look at your PAM configuration files to see what it is doing.
http://www.kernel.org/pub/linux/libs/pam/
http://www.us.kernel.org/pub/linux/l...-html/pam.html |
|
|
|
|
09-20-2006, 11:24 AM
|
#4
|
|
LQ Newbie
Registered: May 2006
Posts: 13
Original Poster
Rep:
|
how do i check if shadow password is enabled?
Hi Nathan,
Not sure how to check if shadow passwords is enabled. I looked in /etc/shadow - anything there i should be looking for?
Quote:
|
Originally Posted by Nathanael
do you have shadow passwords enabled?
|
|
|
|
|
|
09-20-2006, 11:52 AM
|
#5
|
|
Member
Registered: May 2004
Location: Karlsruhe, Germany
Distribution: debian, gentoo, os x (darwin), ubuntu
Posts: 940
Rep:
|
first of all it's Nathanael!
secondly: googleing and searching this forum makes me believe you need to run authconfig
(that should be a hint to use google and to search this forum ... a friendly hint) :-)
|
|
|
|
All times are GMT -5. The time now is 09:36 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
