Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 16th December 2011, 15:53
teves teves is offline
Senior Member
 
Join Date: Oct 2006
Posts: 150
Thanks: 27
Thanked 15 Times in 10 Posts
Default Where to find user password hashes?

Hello,

can someone please tell me where I can find the user passwords (the hashes) in ISPConfig 2.2.35 ?
I could not find a helpful answer in the forum; obviously they are not saved in the isp_isp_user table. I found a forum posting indicating they're stored in /etc/passwd, but each line in there looks like the following:
webNNN-spamroot:x:10012:10001:spamroot:/var/www/webNNN/user/webNNN-spamroot:/bin/false
No hashes in here. Can someone help, please.

Is it correct that these passwords are stored in the crypt-md5 format (hashes beginning with '$1$') ?

Thank you,
regards, Tom
Reply With Quote
Sponsored Links
  #2  
Old 17th December 2011, 16:58
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,744 Times in 2,577 Posts
Default

PAsswords aren't stored in the database for security reasons. They are in /etc/shadow.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
teves (18th December 2011)
  #3  
Old 18th December 2011, 12:48
teves teves is offline
Senior Member
 
Join Date: Oct 2006
Posts: 150
Thanks: 27
Thanked 15 Times in 10 Posts
Default

Thank you very much Falko!
This information is vital for me.

Regards, Tom
Reply With Quote
  #4  
Old 18th December 2011, 23:14
teves teves is offline
Senior Member
 
Join Date: Oct 2006
Posts: 150
Thanks: 27
Thanked 15 Times in 10 Posts
 
Default

Sorry to bother again, but I have another question:

looking into /etc/shadow I found a faulty line in there.
While a typical entry looks like:
webNN-admin:$1$RtRNROt]$9vn7gWtxrYTQko7tu8Qr..:14904:0:99999:7:::

the faulty line looks like this:
OKwEcr$F9nFxEKf9lietOP03P6JW/:14983:0:99999:7:::

In other words: the user name and 5 Characters at the beginning of the password hash are missing.

Does anybody know if this might cause problems?
(Please don't tell me to remove the line; I will do so. ;-) )
I wish to know what problems it might cause, because I had issues in the past that I could not find a root for.

Thank you!
Regards, Tom
Reply With Quote
Reply

Bookmarks

Tags
user password hashes

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Dovecot v2 with ISPConfig 3 CSsab Installation/Configuration 13 13th September 2012 19:01
My Server Is Sending Spam. How Do I Block This? LordJ Server Operation 1 7th July 2011 19:34
User Password gets reset when site is selected mgg75 Installation/Configuration 2 5th May 2011 19:01
Can't access to my website - after install problem pallermo Installation/Configuration 18 4th June 2010 13:29
How to install BFD (Brute Force Detection) domino Tips/Tricks/Mods 9 31st March 2006 22:40


All times are GMT +2. The time now is 14:38.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.