httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 53410] SHA-2 password hashes with more than 9999 rounds not accepted
Date Mon, 16 Jul 2012 20:45:43 GMT

Stefan Fritsch <> changed:

           What    |Removed                     |Added
             Status|REOPENED                    |RESOLVED
         Resolution|---                         |FIXED

--- Comment #4 from Stefan Fritsch <> ---
(In reply to comment #3)
> Hmm, I've read through the code again and the fix consists of increasing the
> size of the (static) buffer holding a copy of the crypted password. I don't
> see why this size limit is necessary at all. Why not just do a
> straight-forward strcmp(crypt_pw, hash) at the end?

True, that's better. Fixed in

trunk: r1362241
1.5: r1362243
1.4: r1362244

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message