[TriLUG] MD5 password problem in SuSE

Jeremy Portzer jeremyp at pobox.com
Thu Aug 1 14:33:42 EDT 2002


On Thu, 1 Aug 2002, Paul D. Boyle wrote:

> Jeff Bollinger:
> > Running SuSE (7.1?) on a Sparc64 I went to the KDE control panel and the 
> > Security Settings module (all as root) and checked the "active MD5 
> > encryption for passwords".  I had a user change her password, and now 
> > she cannot log in via SSH.
> > 
> > When I look at /etc/shadow I can tell her new password has MD5 because 
> > the encrypted password is MUCH longer than the other user passwords (who 
> > have not changed their passwords since I enabled MD5 encryption.)
> > 
> > Any ideas how I can keep MD5 encryption on all the passwords in 
> > /etc/shadow, but still access the system via SSH?
> 
> This sounds like a PAM problem.  Look at the /etc/pam.d/sshd to see if has
> md5 included.  On a SuSE 7.x system this is what it looks like:

Also, make sure that openssh is setup to use pam (--with-pam option to
configure, I believe), and not MD5 or shadow passwords.  (The MD5 and
shadow password options are for computers *without* PAM.)

--Jeremy




More information about the TriLUG mailing list