Bug 395

Summary: Root Login Sercurity Bug?
Product: [Retired] Red Hat Linux Reporter: blake
Component: kernelAssignee: David Lawrence <dkl>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: high    
Version: 5.2CC: blake
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: i386   
OS: Linux   
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 1998-12-13 23:44:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description blake 1998-12-12 05:28:59 UTC
Hello, I recently purchased a copy of RH 5.2, which I'm
quite pleased with, keep up the good work.

I set the root password on my box to "notachance"
I added a user "blake" and set the password to "notachance3"

I can login on with either account (root or blake) using
either password this seems very odd both passwords work
with both accounts? Am I missing the boat on something here?

Comment 1 Anonymous 1998-12-12 07:56:59 UTC
Thses passwords are 9 and 10 characters, maybe there is a limit of 8
characters and the additional will be ignored?

Comment 2 blake 1998-12-12 08:17:59 UTC
Actually, notachance is 10 characters and notachance3 is 11 characters
And yes 8 characters appears to be the max, I did not imagine the
number of characters allowed for passwords was that low, that
is odd, oh well.

Comment 3 openshift-github-bot 2016-06-27 15:13:06 UTC
Commit pushed to master at https://github.com/openshift/source-to-image

Merge pull request #496 from rhcarvalho/issue395-consistent-container-names

Merged by openshift-bot