HPE Community
Operating System - HP-UX
1825764 Members
2016 Online
109687 Solutions
New Discussion

Maximum Password Length: does not work

 
F Verschuren
Esteemed Contributor

‎12-12-2007 04:34 AM

‎12-12-2007 04:34 AM

Maximum Password Length: does not work

on a trusted system I have configgured is sam:

Maximum Password Length: 12

see alsow:
[:/tcb/files/auth/system]# grep u_maxlen default
:u_minchg#86400:u_maxlen#12:u_exp#7862400:u_life#16934400:\
[:/tcb/files/auth/system]#

So now I can create a passwd of 12 caracters and that works fine, if I type in the first 11 caracters is wil not work... however if i use a 8 caracter passwd the passwd wil alsow work if I type in extra caracters... is there a fix for this.
I dit a find on the form and saw a lot of postings that more than 8 caracters wil be ignored on trusted systems, but that is not the case because if i have a paswd of 9 the only 8 caracters wil not let me in....

Is there a fix for this?
0 Kudos
Reply
4 REPLIES 4
Bill Hassell
Honored Contributor

‎12-12-2007 05:09 PM

‎12-12-2007 05:09 PM

Re: Maximum Password Length: does not work

You need to check the current size of the encrypted password for problem users. If the :u_pwd= entry has a string of 13 characters, then the password is only 8 characters or less. If the string is 24 characters, then the password is 9 or more characters. The 8 character problem has to do with using 10 character passwords on an unTrusted system where characters 9+ are silently ignored. On a Trusted system, every character is significant.

So if an unTrusted system is converted to Trusted, all characters entered for a password become significant and users that incorrectly type 9 or more on the old system will now be kicked out on the Trusted system. No problem though -- just change their password to what they want to use.


Bill Hassell, sysadmin
0 Kudos
Reply
F Verschuren
Esteemed Contributor

‎12-13-2007 12:56 AM

‎12-13-2007 12:56 AM

Re: Maximum Password Length: does not work

let me explain better:
I have a tcb entry.

i set the passwd qwer1234
I can login whit:
qwer1234
qwer12345
qwer123456
If i set the passwd on:
qwer1234567
I can login whit:
qwer1234567
but not whit
qwer123456
qwer12345678
so why if I use a 8 caracter passwd all the above is skiped, but If i use a 9 ore more carracter passwd only exact 9 ore more caracters are working?
program that I used to test this is su.
0 Kudos
Reply
Robert-Jan Goossens
Honored Contributor

‎12-13-2007 02:42 AM

‎12-13-2007 02:42 AM

Re: Maximum Password Length: does not work

Hoi Freek,

are you running on 11.0 and if you are on 11.0, do you have patch PHCO_20334 installed?

http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01005214-1

Regards,
Robert-Jan
0 Kudos
Reply
F Verschuren
Esteemed Contributor

‎12-13-2007 03:58 AM

‎12-13-2007 03:58 AM

Re: Maximum Password Length: does not work

I have tryed it on 11.23 (itanium), 11.11, and 11.00 (whitout patch PHCO_20334)
All the same "problem" it looks like this is a design issue of hp....

ps After finding this out and explaining the customer, there was no problem anny more but I was just wondering why....
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.