Subject: Re: "daily insecurity output" annoyance
To: Perry E. Metzger <perry@wasabisystems.com>
From: Andrew Brown <atatat@atatdot.net>
List: tech-security
Date: 01/25/2001 15:47:12
>> >Right now, as it stands, /etc/security prints that message out no
>> >matter what if field two of the password file is not thirteen or
>> >twenty characters long. (What is twenty characters for?)
>> 
>> 20 characters is for md5 based passwords.  you're using current, so a
>> quick look at passwd.conf (sorry, there's no example in the tree)
>> should give you an idea of this.
>
>We could use an example, by the way, if you care to contribute one...

and i could make one up (and i probably will), but the totality of it,
and the subtleties and full functionality, would be best maintained by
someone who wrote the code.  :)

right now, i've got this:

default:
        localcipher = md5

but there's a little more to it than that.

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
andrew@crossbar.com       * "information is power -- share the wealth."