public inbox for development@lists.ipfire.org
 help / color / mirror / Atom feed
* [PATCH] proxy.cgi: Switch to MD5 hashed passwords for local user auth.
@ 2020-02-07 11:06 Stefan Schantl
  2020-02-07 11:33 ` Michael Tremer
  0 siblings, 1 reply; 2+ messages in thread
From: Stefan Schantl @ 2020-02-07 11:06 UTC (permalink / raw)
  To: development

[-- Attachment #1: Type: text/plain, Size: 780 bytes --]

The former used default Crypt algorithmus only supports passwords up to
eight signs wheater MD5 does not have any limitation here.

Fixes 12290.

Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
---
 html/cgi-bin/proxy.cgi | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/html/cgi-bin/proxy.cgi b/html/cgi-bin/proxy.cgi
index b63964081..06aca579b 100644
--- a/html/cgi-bin/proxy.cgi
+++ b/html/cgi-bin/proxy.cgi
@@ -3945,7 +3945,13 @@ sub adduser
 	} else {
 		&deluser($str_user);
 
-		my $htpasswd = new Apache::Htpasswd("$userdb");
+		my %htpasswd_options = (
+			passwdFile => "$userdb",
+			UseMD5 => 1,
+		);
+
+		my $htpasswd = new Apache::Htpasswd(\%htpasswd_options);
+
 		$htpasswd->htpasswd($str_user, $str_pass);
 	}
 
-- 
2.25.0


^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-02-07 11:33 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-02-07 11:06 [PATCH] proxy.cgi: Switch to MD5 hashed passwords for local user auth Stefan Schantl
2020-02-07 11:33 ` Michael Tremer

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox