Mailing List Archive

Support open source code!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Looking for c source code to generate cvs passwords


--- "Stephen J. Turnbull" <turnbull@example.com> wrote:
> >>>>> "Jake" == Jake Morrison <jake_morrison@example.com> writes:
> 
>     Jake> The passwords in CVS are the same as the passwords in
>     Jake> /etc/password (or rather /etc/shadow).
> 
> Not for pserver, they aren't.  Or at least they never used to be; cvs
> docs specifically warn that they are trivially crackable (ROT13,
> anyone?)

Yes, the passwords stored in .cvslogin are trivially 
encoded, as they need to be sent to the server in cleartext. 
But the passwords on the server are in crypt format.

The Fine Manual:
http://cvshome.org/docs/manual/cvs_2.html#SEC30

> 
> The CVS source is an obvious place to look....
> 

Jake

__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links