Full_Name: Dmitry Morozovsky
Version: 2.4.9
OS: FreeBSD
Submission from: s3-021.cl.rinet.ru (195.54.193.21)
Here is small patch to docs that I suppose to be useful for those who live
under UNIXes with md5 password hashes:
--- pkg.ssldoc/ssl_reference.html~ Wed Nov 24 14:26:55 1999
+++ pkg.ssldoc/ssl_reference.html Wed Dec 29 10:13:06 1999
@@ -2042,12 +2042,14 @@
be used for access control. The user name is just the Subject of the
Client's X509 Certificate (can be determined by running OpenSSL's
<code>openssl x509</code> command: <code>openssl x509 -noout -subject -in
</code><em>certificate</em><code>.crt</code>). Note that no password is
obtained from the user. Every entry in the user file needs this password:
- `<code>xxj31ZMTZzkVA</code>'', which is the encrypted version of the word
- `<code>password</code>''.
+ `<code>xxj31ZMTZzkVA</code>'', which is the DES-encrypted version of the
+ word `<code>password</code>''. Those who live under MD5-crypting systems
+ like FreeBSD of BSD/OS should use MD5 hash of the same word:
+ `<code>$1$OXLyS...$Owx8s2/m9/gfkcRVXzgoE/</code>''.
<p>
<li><code>StrictRequire</code>
<p>
This <i>forces</i> forbidden access when <code>SSLRequireSSL</code> or
<code>SSLRequire</code> successfully decided that access should be
[the same applies to wml file]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
