Bug 212345
| Summary: | vnc accepts shortened password | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Need Real Name <lsof> |
| Component: | vnc | Assignee: | Adam Tkac <atkac> |
| Status: | CLOSED NOTABUG | QA Contact: | David Lawrence <dkl> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | rawhide | CC: | ovasik |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2006-12-05 08:16:11 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Need Real Name
2006-10-26 13:52:39 UTC
yes, but I think eight-characters password is enough, isn't it?? Giving a user the false security of setting a long password, but actually ignoring everything after the eighth character is a terrible idea. Eight characters is definitely not enough. I think, nobody gives false security. Please, see $man vncpasswd... From vncpasswd man page: "The password must be at least six characters long, and only the first eight characters are significant. Note that the stored password is not encrypted securely - anyone who has access to this file can trivially find out the plaintext password, so vncpasswd always sets appropriate permissions (read and write only by the owner)" But I'm going to add support to accept all characters in passwd Thanks! In the end, after big thinking, I must deny your enhancement request. VNC uses eight-character encryption key (password=key) and it's no way how use more than 8 characters without break rfb protocol compatibility. Please mail to RealVNC about this request |