hybrid 7.0 on freebsd
Rachel Llorenna
rachies at gmail.com
Wed Mar 16 20:15:27 EST 2005
Oops, forgot to send this back to the mailing list too..
---------- Forwarded message ----------
From: Rachel Llorenna <rachies at gmail.com>
Date: Wed, 16 Mar 2005 20:14:32 -0500
Subject: Re: hybrid 7.0 on freebsd
To: Paul-Andrew Joseph Miseiko <esoteric at teardrop.ca>
The FreeBSD technology is pretty old. It's of course not a bad thing,
FreeBSD is great when you want a stable server over one with a ton of
new features. Like programming languages, every operating system seems
to have its place. Linux has lots of neat, new features, although it
hasn't been tested as thoroughly as FreeBSD. It all comes down to what
you intend to use the server for; I wouldn't trust Linux on a
production server and would personally opt for FreeBSD. BSD has
kevent/kqueue too, which is nice, although I think Linux supports it
too (at least my GNU/Linux Debian 3.1 server does..)
And you should really keep people from reading your hashes if
possible, as most algorithms have been 'broken' (MD5/SHA-0 and
recently SHA-1 have successful & documented collision attacks - not
preimage attacks, however.) Security through obscurity works, though
it's probably not good if it's the only method of security you're
using. Access control and privilege separation (chmodding your config
files 600, etc) will keep your password hashes safe, hopefully.
On Wed, 16 Mar 2005 20:08:03 -0500 (EST), Paul-Andrew Joseph Miseiko
<esoteric at teardrop.ca> wrote:
> FreeBSD 5.3 is not old, it is rather recent. I think you need to
> re-evaluate your concept of age.
>
> Filippo, you are running the "mkpasswd" tool that came with Hybrid? If so
> try different hash algorithms like Rachel suggested:
>
> mkpasswd [-m|-d] [-l saltlength] [-s salt] [-p plaintext]
> -m Generate an MD5 password
> -d Generate a DES password
> -l Specify a length for a random MD5 salt
> -s Specify a salt, 2 alphanumeric characters for DES, up to 16 for MD5
> -p Specify a plaintext password to use
>
> Personally I would not use DES; especially if other people will be capable
> of viewing the hash. mmm hash...
>
> --
> .-------------------------------------.
> ( Biggest security gap -- an open mouth )
> `-------------------------------------'
> --
> Paul-Andrew Joseph Miseiko
>
> On Wed, 16 Mar 2005, Rachel Llorenna wrote:
>
> > Perhaps FreeBSD's crypt() libs aren't supporting the hash function
> > you're using. Try using MD5 or DES, as those are pretty well standard,
> > even on "old" (yes, FreeBSD is old!) operating systems.
> >
> >
> > On Mon, 14 Mar 2005 20:38:31 +0100, Filippo Cortigiani
> > <filippo.cortigiani at simosnap.org> wrote:
> >> I've succesifull compiled hybrid 7.0 on freebsd 5.3 , but i can't oper me
> >> with /oper user pass cause it don't see the password made with mkpassword.
> >> Anyone know if there's a way to resolve this ? i run hybrid7 on linux without
> >> any problem.
> >>
> >> Regards
> >> Simos
> >>
> >
> >
> > --
> > Regards,
> >
> > Rachel Llorenna (frequency)
> >
> >
>
>
--
Regards,
Rachel Llorenna (frequency)
--
Regards,
Rachel Llorenna (frequency)
More information about the hybrid
mailing list