azurelinux icon indicating copy to clipboard operation
azurelinux copied to clipboard
verified publisher icon microsoft

Enable sha encryption for chpasswd binary in shadow utils package

Open navjotsinghji opened this issue 1 year ago • 2 comments

In order to meet the security requirements of our AFO Unity Cloud product, we require the chpasswd binary to be enabled with sha512 encryption, so this is a request to re-compile the shadow utils package with sha encryption

navjotsinghji avatar Jan 23 '24 05:01 navjotsinghji

I think this is doable with using -c argument. Have you been able to try this and confirm if it works or not ?

$ chpasswd --help
Usage: chpasswd [options]

Options:
  -c, --crypt-method METHOD     the crypt method (one of NONE DES MD5 SHA256 SHA512)

eric-desrochers avatar Apr 26 '24 14:04 eric-desrochers

This was NOT working in 2.0 that's the reason I raised the issue.. (I mean after integratring with Mariner2.0, our app crashed at runtime and then I realized that /usr/sbin/chpasswd --crypt-method=SHA512 was failing. Reason is that chpasswd was NOT supporting sha512)..

NOT sure if there is an update now or you are referring to 3.0

navjotsinghji avatar Apr 26 '24 15:04 navjotsinghji