On Wed, Jul 30, 2008 at 10:56:59PM +0200, Laurent Bonnaud wrote: > > pam (1.0.1-1) unstable; urgency=low > > . > > * New upstream version. > > - pam_unix now supports SHA-256 and SHA-512 password hashes. > > Closes: #484249, LP: #245786.
> Thank you for this new version! > However there are 2 problems with SHA password hashes: > - they are not documented in the pam_unix manpage. Fortunately, they > are documented in /usr/share/doc/libpam-doc/html/sag-pam_unix.html. That seems like a separate bug? :) > - they do not work. I replaced "md5" with "sha512" > in /etc/pam.d/common-password, ran "passwd SOME_ACCOUNT" as root and > checked /etc/shadow. The hashed password looks like an old DES hash. > Same problem with sha256. I've just tested it here and definitely see sha512 instead of md5 when I change a password. Can you show me your full /etc/pam.d/common-password? -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developer http://www.debian.org/ [EMAIL PROTECTED] [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]