[rt-users] Password Encryption Used By RT
John Gedeon
jgedeon at qualcomm.com
Fri Nov 8 12:53:10 EST 2002
Rick
if our passwords used md5 (i am not sure if they do) would it be possible
to hack rt to use the same thing or is there no md5 function for perl?
John
At 08:41 AM 11/8/2002, Rick Bradley wrote:
>* John Gedeon (jgedeon at qualcomm.com) [021108 10:32]:
> > I am evaluating the RT system and noticed that the passwords stored in the
> > database are encrypted (good job i wasn't expecting that :) ) but I was
> > wondering what algorithm was used. I hope its the same as unix based
> > passwords I am hoping to be able to add the functionality that all
> users in
> > RT that get greated by them sending in a request will have their unix
> > password (and id which is usually their email address as well) be their rt
> > pass. the easyiest way would ofcourse be cut encrypted pass from passfile
> > and paste into rt user table, but I wanted to make sure the encryption was
> > the same....
>
>The passwords are encrypted with crypt(). This is common for Unix
>passwords, but not necessarily identical with what a particular system
>uses. Many newer systems will use md5 login passwords which look a bit
>different, function similarly, and use a completely different hashing
>algorithm than crypt.
>
>It is straightforward to mix and match crypt() and md5() password within
>the same password file/database where supported, but I'm not aware that
>RT has this capability (yet).
>
>In short, if your system uses crypt() passwords then you should be able
>to cut and paste from the passwd file, otherwise no.
>
>Rick
>--
> http://www.rickbradley.com MUPRN: 60 (59F/56F)
> | mean if anyone
> random email haiku | knew me that well I'd have to
> | fall in love with them.
>_______________________________________________
>rt-users mailing list
>rt-users at lists.fsck.com
>http://lists.fsck.com/mailman/listinfo/rt-users
>
>Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
<>< Proverbs 3:5 "Trust in the Lord with all your heart and lean not on
your own understanding;"
More information about the rt-users
mailing list