When running logdaemon-5.3 on a Digital Unix 3.2C machine with enhanced
security I get some trouble.
I compiled the login-package as specified with "-DDECOSF1_ENHANCED"
and "SYSLIBS=-lsecurity", and we do not use the /etc/login.access
-feature so that users who have not run keyinit will have to use their
old passwords and users that utilize S/Key have the option to
(insecurely) enter their old password.
The problem seems to be that if a user, that is not using S/Key, has a
password that is longer than 8 characters he cannot log in. My theory
is that the login program ignores everything after the 8:th character
(since this is the old unix '/etc/passwd'-style way to do it), but the
enhanced security has support for this, and we encourage our users to
use long passwords that are hard to guess.
Has anyone else seen this? Is there a fix somewhere?
********************************************************************
Kalle Flodkvist
Uppsala universitet
IT Stöd
Box 887 Email: Kalle.Flodkvist_at_its.uu.se
751 08 UPPSALA Fax: +46 18 18 79 10
Sweden Telephone: +46 18 18 78 63
********************************************************************
Received on Fri Nov 15 1996 - 08:31:33 NZDT