Back to list
Re: Roo 1.2 password changing
Aug 08 2007 07:52PM
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Once again I am reminded that I should stick to OS level issues ;P
On Wed, 08 Aug 2007 12:45:24 -0400 Lucretia <lucretias (at) shaw (dot) ca [email concealed]>
>On Thu, 2007-08-02 at 12:19 -0400, Earl wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>> The db schema that holds the walleye passwd is char/16. We felt
>> that given the "mix" requirements this would usually be a
>> sufficient length.
>> I'm not sure if MySQL gives you the full 16 or if there is some
>> sort of "end-of-string" char that ends up yielding 15. Will a
>> (or lower) char password work?
>After discussing this off list with Scott, it was determined to be
>limiting to eight or nine characters.
>I have traditionally used 10 to 17 chars which simply would not
>and 9 work fine.
>This is new with Roo 1.2.
>Thanks again to Scott for confirming this for me.
>> On Tue, 31 Jul 2007 10:04:27 -0400 Lucretia <lucretias (at) shaw (dot) ca [email concealed]>
>> >I have used Roo for a couple years now and like the simple
>> >package. I
>> >have wiped my 1.1 box for installation of 1.2 which is going
>> >for one problem I cannot figure out.
>> >When I login to walleye for the first time, it takes me to the
>> >password page. I cannot get past this page. It requests the
>> >password 'honey' and then the new password and a confirm of the
>> >password. The new password is 17 chars with all the
>> >yet I
>> >keep getting one of the two errors
>> >'the password is not long enough' or 'the username or password
>> >entered is not valid'.
>> >Then I'll generate 'you have exceeded the maximum number of
>> >But then 'roo' and 'honey' are what get me logged back in.
>> >Is there a bug in the walleye.pl script? Am I too familiar and
>> >forgetting some important step?
>> >Can I bypass this to use the walleye interface or am I stuck
>> -----BEGIN PGP SIGNATURE-----
>> Note: This signature can be verified at
>> Version: Hush 2.5
>> -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5
-----END PGP SIGNATURE-----
[ reply ]
Copyright 2010, SecurityFocus