Welcome! Log In Create A New Profile

Advanced

Re: basic auth not working 100%

Previous Message Next Message
Forum List Message List New Topic Print View
Ray
April 08, 2010 10:58AM
Yeps that's a shortcoming of crypt(). One way to go around it is to use a 8
char password, but a pretty random string (the "password") as the username
;)

Ray.

On Thu, Apr 8, 2010 at 12:07 AM, Boris Dolgov <boris@dolgov.name> wrote:

> On Wed, Apr 7, 2010 at 7:33 PM, AMP Admin <admin@ampprod.com> wrote:
> > On one of my boxes I noticed that if the password is only half the string
> it
> > will authenticate.
> > Should be:
> > Username: tester
> > Pass: ThisPassword1234#&^
> > But the following authenticates:
> > Username: tester
> > Pass: ThisPassword
> > Can anyone confirm this behavior?
>
> ThisPass will also authenticate - crypt() uses only first 8 symbols of
> the password.
>
> --
> Boris Dolgov.
>
> _______________________________________________
> nginx mailing list
> nginx@nginx.org
> http://nginx.org/mailman/listinfo/nginx
>
_______________________________________________
nginx mailing list
nginx@nginx.org
http://nginx.org/mailman/listinfo/nginx
Reply Quote
RSS
Subject Author Posted

basic auth not working 100%

testbot April 07, 2010 11:38AM

Re: basic auth not working 100%

Boris Dolgov April 07, 2010 12:14PM

Re: basic auth not working 100%

Ray April 08, 2010 10:58AM

RE: basic auth not working 100%

testbot April 10, 2010 11:40AM

Re: basic auth not working 100%

edogawaconan April 10, 2010 12:54PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 153
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready