[tac_plus] Re: tac_plus with PAM on FreeBSD

Kiss Gabor (Bitman) kissg at ssg.ki.iif.hu
Wed Mar 12 17:17:44 UTC 2008

> > You need a libcrypt.so with GNU extensions where crypt(3)
> > supports md5 password hashes.
> For the record, there is nothing GNU about this.  GNU stuff might support
> it now, but it originated with BSD and AFAIK FBSD, NBSD and OBSD all support
> DES and MD5 hashes and FBSD and NBSD also support blowfish, IIRC.

You must be right.
I just read this on crypt(3) man page a few days ago:

  The glibc2 version of this function has the following  additional  fea-
  tures.   If  salt is a character string starting with the three charac-
  ters "$1$" followed by at most eight characters, and optionally  termi-
  nated  by  "$",  then instead of using the DES machine, the glibc crypt
  function uses an MD5-based algorithm, ...

but I did not make any effort to research the origin of md5 password
handling. :-)


More information about the tac_plus mailing list