Password encryption (continued)

Subject: Password encryption (continued)
From: Marc Miller (itlm019@mailbox.ucdavis.edu)
Date: Tue Aug 01 2000 - 19:41:22 EDT

• Next message: Tony Stuckey: "Re: netatalk.com"
• Previous message: BWS - Offwhite: "Re: netatalk.com"
• In reply to: BWS - Offwhite: "Re: netatalk.com"
• Next in thread: Tom Fitzgerald: "Encryption (was: Re: netatalk.com)"
• Reply: Marc Miller: "Password encryption (continued)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I don't do encryption, so I haven't been following your discussion, but
maybe this will help:

Taking a brief look at etc/afpd/auth.c it looks like netatalk supports
Randnum encryption using the des libraries, but I haven't attempted to
turn it on. If Randnum encryption is your goal, start with going into
auth.c and searching for UAM_RNDNUM (the flag passed from the Makefile
that activates that support), then document what it's doing as you
figure it out. Eventually, you'll have enough of it documented that you
can trace through it and clarify your comments. That's how I did my
patchwork in other areas of netatalk.

On Tue, 1 Aug 2000, BWS - Offwhite wrote:

> I am actually adminstering 4 FreeBSD systems with Netatalk and need
> documentation for BSD. If I could get a little push I may be able to
> figure it out and then create the documentation for it.
>
> I am just not sure where to start exactly. I install Netatalk with the
> FreeBSD ports collection and I am betting that all I need to do is use a
> few switches to get it all in order. I have all kinds cryptography in
> place, but do not know how to tell Netatalk to use it.
>
> If I figure it out, I would be happy to post a "How To" guide for FreeBSD.
>
> Brennan Stehling - web developer and sys admin
> projects: www.greasydaemon.com | www.onmilwaukee.com | www.sncalumni.com
>
> On Tue, 1 Aug 2000, Steve Freitas wrote:
>
> > >If someone could write up documentation on how to do secure passwords or
> > >if that is not even possible and add it to the site. I have wanted to do
> > >this for some time but have had little luck in finding that info.
> >
> > This is a major reason why RPMs are such a good idea. For the
> > source-expert among us, it's easy to do this, but the first time I tried
> > compiling Netatalk from source with secure passwords, it took me two
> > weeks, and only after Sandor wrote that up!
> > (http://lindy.stanford.edu/~ssklar/netatalk-setup.html
> > ) And then that process only works on Redhat 6.0 -- 6.1 breaks it. What a
> > nightmare!
> >
> > So many of us are asking the same questions over and over again. "Which
> > do I use? -37b or -39?" "How do I enable encrypted passwords?" "How do I
> > make it use shadow passwords?" "Do I need codepage support?" "What is
> > codepage support?" "How do I make this co-exist with Samba?" "Where can I
> > find rm, mv, and cp scripts which handle .AppleDouble files?"
> >
> > Enough! Let's get this documentation project going!
> >
> > Off-topic: JeffB, a feature request for 2.0: Make randnum and rand2num
> > optionally read shadow passwords. *sigh*
> >
> > Steve Freitas
> >
>

============================================================
        /\/\arc ._|. /\/\iller (itlm019@mailbox.ucdavis.edu)
        Computer Room Consultant
        Information Technology/Lab Management
============================================================
I can be contacted through the Communication Center link from
http://www.mother.com/~mjmiller/

• Next message: Tony Stuckey: "Re: netatalk.com"
• Previous message: BWS - Offwhite: "Re: netatalk.com"
• In reply to: BWS - Offwhite: "Re: netatalk.com"
• Next in thread: Tom Fitzgerald: "Encryption (was: Re: netatalk.com)"
• Reply: Marc Miller: "Password encryption (continued)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Wed Jan 17 2001 - 14:31:47 EST