[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Changes to gnats/doc/gnats.texi
|
From: |
Yngve Svendsen |
|
Subject: |
Changes to gnats/doc/gnats.texi |
|
Date: |
Mon, 14 Oct 2002 07:42:25 -0400 |
Index: gnats/doc/gnats.texi
diff -c gnats/doc/gnats.texi:1.26 gnats/doc/gnats.texi:1.27
*** gnats/doc/gnats.texi:1.26 Sun Jul 14 13:27:47 2002
--- gnats/doc/gnats.texi Mon Oct 14 07:42:25 2002
***************
*** 1703,1710 ****
If the password is in plain text format, it must be prefixed by
@samp{$0$} and if it is in MD5 format, it needs to be prefixed by the
! string @samp{$1$}. Passwords encrypted by @code{crypt()} should have no
! prefix.
A @code{gnats-passwd} tool to manage @file{gnatsd.user_access} files is
planned. In the meantime, @code{crypt()} passwords can be generated by
--- 1703,1714 ----
If the password is in plain text format, it must be prefixed by
@samp{$0$} and if it is in MD5 format, it needs to be prefixed by the
! string @address@hidden systems support even more encryption
! methods. In FreeBSD, for instance, a prefix of @samp{$2$} implies
! Blowfish encoding. @sc{gnats} will happily accept any encryption that
! the OS supports.} Passwords encrypted by @code{crypt()} should have no
! prefix. If no password is given then users can login with an empty
! password string.
A @code{gnats-passwd} tool to manage @file{gnatsd.user_access} files is
planned. In the meantime, @code{crypt()} passwords can be generated by
***************
*** 1739,1758 ****
@example
rickm:$0$ruckm:edit
pablo:$0$pueblo:view
! *:*:none
@end example
@noindent And this is the same file with MD5-encrypted passwords:
@example
rickm:$1$92388613$D7ZIYikzTUqd./dODTFrI.:edit
pablo:$1$92388652$QRfAhIBG5elT.FQjQKhj80:view
! *:*:none
@end example
! @noindent In these examples, anybody other than rickm and pablo get denied
access,
! assuming that the host access level is also @code{none}. You could set
! the catch-all rule at the end to be @code{*:*:view} to allow view access
! to anyone.
The overall user access file
@address@hidden@var{SYSCONFDIR}/gnats/gnatsd.user_access}}, usually
--- 1743,1768 ----
@example
rickm:$0$ruckm:edit
pablo:$0$pueblo:view
! *::none
@end example
@noindent And this is the same file with MD5-encrypted passwords:
@example
rickm:$1$92388613$D7ZIYikzTUqd./dODTFrI.:edit
pablo:$1$92388652$QRfAhIBG5elT.FQjQKhj80:view
! *::none
@end example
! @noindent In these examples, anybody other than rickm and pablo get
! denied access, assuming that the host access level is also @code{none}.
! You could set the catch-all rule at the end to be @code{*::view} to
! allow view access to anyone who does not supply a password. Note the
! important detail that such a rule would allow view access only to
! persons who do not supply a password at all, i.e. if rickm or pablo tries
! to log in but mistypes his password, this rule would not apply and
! they would be denied access entirely. This is by design, since people
! might be surprised if they suddenly found themselves logged in, but with
! a lower access level than they usually have.
The overall user access file
@address@hidden@var{SYSCONFDIR}/gnats/gnatsd.user_access}}, usually
- Changes to gnats/doc/gnats.texi,
Yngve Svendsen <=
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/14
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/14
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/14
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/14
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/15
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/15
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/20
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/24
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/24
- Changes to gnats/doc/gnats.texi, Yngve Svendsen, 2002/10/24