Thanks to Dan Kopecek <dkopecek@redhat.com>.
* src/chpasswd.c, src/chgpasswd.c: Do not use DES by default, but
the system default define in /Etc/login.defs. Thanks to Dan
Kopecek <dkopecek@redhat.com>.
* NEWS, man/chpasswd.8.xml, man/chgpasswd.8.xml: Do not mention
DES as the default algorithm.
* src/chpasswd.c, src/chgpasswd.c: Tag the ENCRYPTMETHOD_SELECT
dependent code accordingly.
* libmisc/salt.c: Make sure method is not NULL, defaulting to DES.
Thanks to Dan Kopecek <dkopecek@redhat.com>.
-
+ * src/chpasswd.c, src/chgpasswd.c: Do not use DES by default, but
+ the system default define in /Etc/login.defs. Thanks to Dan
+ Kopecek <dkopecek@redhat.com>.
+ * NEWS, man/chpasswd.8.xml, man/chgpasswd.8.xml: Do not mention
+ DES as the default algorithm.
+ * src/chpasswd.c, src/chgpasswd.c: Tag the ENCRYPTMETHOD_SELECT
+ dependent code accordingly.
2007-11-23 Nicolas François <nicolas.francois@centraliens.net>
passwords.
- chpaswd, chgpasswd, newusers: New options -c/--crypt-method and
-s/--sha-rounds to supersede the system default encryption algorithm.
+- chpaswd, chgpasswd, newusers: DES is no more the default algorithm. They
+ will respect the system default configured in /etc/login.defs
*** documentation:
- Generate the translated manpages from PO at build time.
remap='I'>password</emphasis>
</para>
<para>
- By default the supplied password must be in clear-text. Default
- encryption algorithm is DES.
+ By default the supplied password must be in clear-text, and is
+ encrypted by <command>chgpasswd</command>.
</para>
<para>
The default encryption algorithm can be defined for the system with
remap='I'>password</emphasis>
</para>
<para>
- By default the supplied password must be in clear-text. Default
- encryption algorithm is DES. Also the password age will be updated, if
- present.
+ By default the supplied password must be in clear-text, and is
+ encrypted by <command>chpasswd</command>.
+ Also the password age will be updated, if present.
</para>
<para>
The default encryption algorithm can be defined for the system with
" -c, --crypt-method the crypt method (one of %s)\n"
" -e, --encrypted supplied passwords are encrypted\n"
" -h, --help display this help message and exit\n"
- " -m, --md5 use MD5 encryption instead of DES when the supplied\n"
- " passwords are not encrypted\n"
+ " -m, --md5 encrypt the clear text password using the MD5 algorithm\n"
"%s"
"\n"),
Prog,
{"encrypted", no_argument, NULL, 'e'},
{"help", no_argument, NULL, 'h'},
{"md5", no_argument, NULL, 'm'},
+#ifdef ENCRYPTMETHOD_SELECT
{"sha-rounds", required_argument, NULL, 's'},
+#endif
{NULL, 0, NULL, '\0'}
};
while ((c =
- getopt_long (argc, argv, "c:ehms:", long_options,
+ getopt_long (argc, argv,
+#ifdef ENCRYPTMETHOD_SELECT
+ "c:ehms:",
+#else
+ "c:ehm",
+#endif
+ long_options,
&option_index)) != -1) {
switch (c) {
case 'c':
case 'm':
md5flg = 1;
break;
+#ifdef ENCRYPTMETHOD_SELECT
case 's':
sflg = 1;
if (!getlong(optarg, &sha_rounds)) {
usage ();
}
break;
+#endif
case 0:
/* long option */
break;
if (sflg)
arg = &sha_rounds;
} else
- crypt_method = "DES";
+ crypt_method = NULL;
cp = pw_encrypt (newpwd,
crypt_make_salt(crypt_method, arg));
}
" -c, --crypt-method the crypt method (one of %s)\n"
" -e, --encrypted supplied passwords are encrypted\n"
" -h, --help display this help message and exit\n"
- " -m, --md5 use MD5 encryption instead of DES when the supplied\n"
- " passwords are not encrypted\n"
+ " -m, --md5 encrypt the clear text password using the MD5 algorithm\n"
"%s"
"\n"),
Prog,
{"encrypted", no_argument, NULL, 'e'},
{"help", no_argument, NULL, 'h'},
{"md5", no_argument, NULL, 'm'},
+#ifdef ENCRYPTMETHOD_SELECT
{"sha-rounds", required_argument, NULL, 's'},
+#endif
{NULL, 0, NULL, '\0'}
};
while ((c =
- getopt_long (argc, argv, "c:ehms:", long_options,
+ getopt_long (argc, argv,
+#ifdef ENCRYPTMETHOD_SELECT
+ "c:ehms:",
+#else
+ "c:ehm",
+#endif
+ long_options,
&option_index)) != -1) {
switch (c) {
case 'c':
case 'm':
md5flg = 1;
break;
+#ifdef ENCRYPTMETHOD_SELECT
case 's':
sflg = 1;
if (!getlong(optarg, &sha_rounds)) {
usage ();
}
break;
+#endif
case 0:
/* long option */
break;
if (sflg)
arg = &sha_rounds;
} else
- crypt_method = "DES";
+ crypt_method = NULL;
cp = pw_encrypt (newpwd,
crypt_make_salt(crypt_method, arg));
}
projects / shadow / commitdiff