Tuesday August 12, 2008

I find I'm answering this question a lot on our internal support aliases. Simply out the maximum possible length is 255. However it actually depends on the algorithm that crypt(3C) is going to use. Starting in the second update release of Solaris 9 we made crypt(3C) pluggable.

Not all crypt(3C) plugins accept the full 255 chars as significant input. The documented limit for each of them is on the relevant man page but I'll summarise here:

• crypt_unix(5) - the old unix default (8)
• crypt_sunmd5(5) - S9u2 onwards - (255)
• crypt_bsdmd5(5) - S9u2 onwards - (255)
• crypt_bsdbf(5) - S9u2 onwards - (255)
• crypt_sha256(5) - S10u6 / OpenSolaris onwards - (255)
• crypt_sha512(5) - S10u6 / OpenSolaris onwards - (255)

How to do this is documented here: Solaris 10 System Administrator Collection >> System Administration Guide: Security Services >> System, File, and Device Security >> 3. Controlling Access to Systems (Tasks) >> Changing the Password Algorithm (Task Map)

search

recent entries

• File notification in OpenSolaris - and a bit of shell internals
• Sending a Break to OpenSolaris hosted in Virtualbox
• (Secured) Remote Audit Trail in OpenSolaris
• TVOSUG First Meeting tonight (Mon 6th July)
• printf should not SEGV when passed NULL for %s format
• Encrypting ZFS pools using lofi crypto
• Running Privileged Applications in the OpenSolaris GNOME Desktop
• ZFS Crypto Update
• OpenSolaris "disk" encryption in snv_105
• ZFS Crypto update

navigation

links

rss feeds