Subject: new bcrypted passwd and daily script
To: None <current-users@netbsd.org>
From: Eric Jacoboni <jaco@teaser.fr>
List: current-users
Date: 06/18/2002 20:52:08
Hi,

Since i've updated some account's passwd (say 'jo' and 'jack') to use
the new bcrypt algo:

$ cat /etc/passwd.conf
default:
        localcipher = blowfish,8
        ypcipher = old


I've noticed it break my daily security report. I get:

Checking the /etc/master.passwd file:
Login jo is off but still has a valid shell (/usr/local/bin/ksh93)
Login jack is off but still has a valid shell (/usr/local/bin/ksh93)

But jo and jack are still on... I suppose the new encrypted password
format is the culprit. Did i miss some config point ?

$ uname -a
NetBSD titine.scrogneugneu.org 1.6A NetBSD 1.6A (TITINE-$Revision:
1.493 $) #51: Sat Jun 15 15:20:54 CEST 2002
root@titine.scrogneugneu.org:/usr/src.cvsup/sys/arch/i386/compile/TITINE
i386 

-- 
Éric Jacoboni, né il y a 1327869883 secondes