Ciao a tutti, qualche giorno fa qualcuno in questa lista (scusate, non ricordo chi) aveva scoperto che Mandrake Linux controlla in realt� solo i primi 8 caratteri delle password degli utenti. Cos�, avevo scritto alla MandrakeSoft. Questa � la loro risposta...
Daniele ---------- Messaggio inoltrato ---------- Subject: Re: [Notice] password Date: Thu, 20 Dec 2001 16:36:15 +0100 From: Thierry Vignaud <[EMAIL PROTECTED]> To: Daniele Micci <[EMAIL PROTECTED]> Cc: [EMAIL PROTECTED] Daniele Micci <[EMAIL PROTECTED]> writes: > in these days someone on the mailing list newbie-it discovered that > Mandrake Linux checks only first 8 characters of user's account password. > And this is not outlined in any of the distro's docs. So, the risk is to > create the same password for twoor more users. > I wish the next release will really permit longer user's passwords (at > least 12-15 characters). there's been a security update for passwd in order to enable it to use more characters through md5 method.
