how to verfy username/password pair

kyiydnlm · 11-26-2004, 01:40 AM

when i crypt(3) a password, i could not get an output matching the shadowed one. is there a function to verify username/password pair for LINUX as there's pwdauth(8) doing that for SunOS4? or how can i encrypt a password to match its shadowed password?

sigsegv · 11-26-2004, 03:17 AM

Quote:

Originally posted by kyiydnlm
how can i encrypt a password to match its shadowed password?

Use the same salt that the one in the shadow file has.

(reread man 3 crypt if that doesn't make sense)

kyiydnlm · 11-26-2004, 03:29 AM

No, i do not think it's a problem of salt. shadowed password is much longer than crypt()'s output.

the_unforgiven's answer perhaps makes sense.

-------------------------------------------------------------
the_unforgiven Posted: Nov 26 2004, 03:42 AM
Linux Freak
Group: Members
Posts: 662
Member No.: 8,625
Joined: 3-January 04

Have you enabled MD5 passwords?
If yes, then crypt() won't give you the shadowed password.
You have to use the MD5 API - check out man 3 md5
-------------------------------------------------------------

sigsegv · 11-26-2004, 12:26 PM

That would explain it. I asumed since you were using crypt() you had crypt()'d passwords. My bad.