Bug 67624

Summary: Handbook incorrect about details of Blowfish encryption
Product: Documentation Reporter: Brett Schroeder <brett>
Component: Books & ArticlesAssignee: freebsd-doc (Nobody) <doc>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Brett Schroeder 2004-06-06 11:00:39 UTC 
Section 10.4.1 of the Handbook (Recognizing your crypt mechanism) 
states that Blowfish encrypted passwords begin with $2$. This is incorrect, 
they begin with $2a$.

Here's an example from my /etc/master.passwd (most of the encrypted password has been X'd
out ;-)

brett:$2a$04$8K21POXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:1001:0::0:0:Brett Schroeder:/home/brett:/bin/csh
vicki:$2a$04$hoMVJMXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:1000:1000::0:0:Vicki Schroeder:/home/vicki:/bin/csh

How-To-Repeat: 1) Edit /etc/auth.conf to have
	crypt_default   =       blf	# default = md5 des
(not sure if this step is really necessary)

2) Edit /etc/login.conf to have
	:passwd_format=blf:\		# default = md5

3) Run cap_mkdb /etc/login.conf

4) Add a dummy user, take a look at /etc/master.passwd
Comment 1 Christian Brueffer freebsd_committer freebsd_triage 2004-06-09 15:13:42 UTC 
State Changed
From-To: open->closed

Committed, thanks!