Linode Forum
Linode Community Forums 		 FAQFAQ    SearchSearch    MembersMembers      Register Register 
 LoginLogin [ Anonymous ] 
Post new topic  Reply to topic

Board index » Linux Community Forums » General Discussion
  Previous topic | Next topic 
Author Message
sunny
PostPosted: Sat Sep 06, 2003 11:02 am 
Offline
Junior Member

Joined: Sun Jul 27, 2003 7:24 pm
Posts: 42
Website: http://opencurve.org/~sunny
Location: New York, NY
Hi

Why does the Debian small distribution not use shadow/md5 by defualt ?

Thanks

Sunny Dubey

PS: The only reason I can think of not using such is because of NIS (as per debconf warning), however NIS is old and garbage, and anyone thinking about running NIS should really look into nss_ldap and pam_ldap (which work on solaris too).
Top
   
Reply with quote  
sunny
 Post subject:
PostPosted: Sun Sep 07, 2003 8:59 am 
Offline
Junior Member

Joined: Sun Jul 27, 2003 7:24 pm
Posts: 42
Website: http://opencurve.org/~sunny
Location: New York, NY
Responding to my own post ...

One can enable shadow via shadowconfig, and can change from crypt() to MD5 via dpkg-reconfigure passwd

I shall know tomorrow how safe this is on a live running system, heh.

Sunny Dubey
Top
   
Reply with quote  
adamgent
 Post subject:
PostPosted: Sun Sep 07, 2003 11:50 am 
Offline
Senior Member
User avatar

Joined: Mon Jun 23, 2003 1:25 pm
Posts: 260
Hi,

There are no reasons why you should run into any problems, as long as you are not using NIS, which for a VPS should not be a problem.

You can unable md5 and shadow at the same time using

>> dpkg-reconfigure passwd

Although it does not tell you if they are turned on or not and I can not remember how to find out if they are already turned on.

Adam
Top
   
Reply with quote  
griffinn
 Post subject:
PostPosted: Sat Sep 13, 2003 8:31 am 
Offline
Junior Member

Joined: Tue Sep 09, 2003 11:59 am
Posts: 47
Website: http://blog.griffinn.org/
adamgent wrote:
Although it does not tell you if they are turned on or not and I can not remember how to find out if they are already turned on.

# debconf-show passwd

My approach is quite simple: The first thing I do every time after installing Debian stable is to tweak /etc/sources.list to switch to unstable, and then do a reckless "apt-get dist-upgrade". During the upgrade somewhere, the passwd package would have needed reconfiguration anyway and I would've switched on MD5 and shadow.
Top
   
Reply with quote  
adamgent
 Post subject:
PostPosted: Sat Sep 13, 2003 9:29 am 
Offline
Senior Member
User avatar

Joined: Mon Jun 23, 2003 1:25 pm
Posts: 260
So why do you upgrade your distro to the unstable version?

Adam
Top
   
Reply with quote  
griffinn
 Post subject:
PostPosted: Sat Sep 13, 2003 10:13 am 
Offline
Junior Member

Joined: Tue Sep 09, 2003 11:59 am
Posts: 47
Website: http://blog.griffinn.org/
Well, for one thing, I love living dangerously. :shock:

Actually, it's mainly because unstable has PHP 4.3.x (4.3.2+rc3-6 right now), which brings a small collection of niceties like file_get_contents().

"unstable" is more stable than the name suggests, apart from occasional crashes of mozilla, various X and gnome components, etc. which I don't use anyway. Spectacular b0rkage of ssh and pam did happen a few months ago... but I take special care to upgrade such key packages, i.e. mark the package as "on hold" in dselect, monitor bugs.debian.org for about a week before taking the plunge.


Last edited by griffinn on Sat Sep 13, 2003 10:17 am, edited 1 time in total.

Top
   
Reply with quote  
adamgent
 Post subject:
PostPosted: Sat Sep 13, 2003 10:17 am 
Offline
Senior Member
User avatar

Joined: Mon Jun 23, 2003 1:25 pm
Posts: 260
I tend to install most things by hand, as the debain packages do tend to be out of date most of the time.

The only time I usually use apt-get of for small things and things that I really can not be bothered to install from source.

Adam
Top
   
Reply with quote  
Display posts from previous:  Sort by  
Post new topic  Reply to topic

Board index » Linux Community Forums » General Discussion


Who is online

Users browsing this forum: No registered users and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
RSS

Powered by phpBB® Forum Software © phpBB Group