httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joe Orton <jor...@redhat.com>
Subject Re: [users@httpd] Authentication on Solaris fails when password > 8 chars and using MD5 encoded passwords (or digest)
Date Thu, 11 Aug 2005 10:41:41 GMT
On Thu, Aug 11, 2005 at 12:24:06PM +0200, marcel.kuiper@nl.abnamro.com wrote:
> When replacing getpass() with getpassphrase() on Solaris (does the same but
> with passwords up to 256 chars) all works fine but this is not a portable
> solution I guess.
> Another option would be truncating the password that the client had send to
> 8 chars before validating (but many people like longer passwords for their
> better strength)
> 
> Any thoughts for a portable fix?

2.0.x (really, APR) will use getpassphrase() if available.

Regards,

joe



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message