Bug 61280 - pam-0.75-19 rejects NIS password >8 characters
pam-0.75-19 rejects NIS password >8 characters
Product: Red Hat Linux
Classification: Retired
Component: pam (Show other bugs)
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Nalin Dahyabhai
Aaron Brown
Depends On:
  Show dependency treegraph
Reported: 2002-03-15 16:20 EST by ken_laird
Modified: 2007-04-18 12:40 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2002-03-15 16:20:48 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description ken_laird 2002-03-15 16:20:44 EST
From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.4.3-12smp i686)

Description of problem:
Installed out-of-box Redhat 7.2 on a box.  User with a 9 character password
complained that he couldn't login.  I applied the updated pam-0.75-19 errata
package along with the other two packages included in that errata.  Problem was
not fixed.
We are using an NIS password file. 
This user can login by just typing the first 8 characters of his password.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1.Use NIS password file with DES encryption.
2.Have user create a 9 character password.
3.Try logging in through KDE or via telnet.

Actual Results:  Login is rejected.

Expected Results:  pam should have ignored input characters beyond 8.

Additional info:

This problem was solved with earlier Redhat releases and is now back.  Despite
closing notation in another bug I saw in Bugzilla (Sorry, I don't have the
number readily available), the problem is not fixed.
Comment 1 ken_laird 2002-04-11 16:45:50 EDT
Further investigation revealed that this bug report  should be canceled.
The pam-unix module of pam-0.75-14 would reject 9 character passwords but that
is actually
fixed with pam-0.75-19.
The password rejection behavior occurs when a user with such a password tries to
login via kdm.
I will check into this some more and, if necessary, file a different bug report.

Note You need to log in before you can comment on or make changes to this bug.