Bug #6681: Squid local auth password handling is weak and only accepting short passwords - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #6681

closed

Squid local auth password handling is weak and only accepting short passwords

Added by Jim Pingle almost 8 years ago. Updated over 7 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

Squid

Target version:

Start date:

08/04/2016

Due date:

% Done:

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

Description

The password handling in squid for local auth is using crypt() with default settings and cutting off passwords short (which is expected due to the weak defaults of crypt)

Needs beefed up a bit and tested.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #6681

Squid local auth password handling is weak and only accepting short passwords

Updated by Jim Pingle over 7 years ago

Updated by Steve Wheeler over 7 years ago

Updated by Jim Pingle over 7 years ago