A partial fix for this has been accepted upstream. The fixed helper
requires crypt() library support for the SHA hashed algorithm, but when
that is provided will accept SHA-256, SHA-512, and Blowfish hashed
passwords.
http://bugs.squid-cache.org/show_bug.cgi?id=3831
http://www.squid-cache.org
severity 652010 wishlist
retitle 65210 squid3: ncsa_auth should support SHA1 in htpasswd file
thanks
I'm re-tagging this bug as wishlist and removing md5 from the list of missing
hashes. Will forward upstream as soon as there is a bug opened.
Regards,
L
--
Luigi Gangitano -- --
GPG: 1024D/92
The NCSA helper bundled with squid3 packages support MD5 hashes
already. All it requires is the password file to be created with the
"--md5" option to htpasswd (unfortunately that is not the default output
from htpasswd). Both salted and non-salted forms are accepted.
SHA1 is an open feature r
The NCSA helper bundled with squid3 packages support MD5 hashes
already. All it requires is the password file to be created with the -m
option to htpasswd. Both salted and non-salted forms are accepted.
SHA1 is an open feature request upstream, patches very welcome.
Amos
--
To UNSUBSCRIBE,
Source: squid3
Severity: normal
Apache's htpasswd tool usefull when manipulating
htpasswd files, supports adding passwords
hashed and saltes with MD5 and SHA.
ncsa_auth should support such hashes.
they look like this
# crypt() (default or -d)
webserver:/etc/squid3# htpasswd -bc kolowicze.htp
5 matches
Mail list logo