From 515eb1640f37e0f419ba1bb43cdafa2600ede0df Mon Sep 17 00:00:00 2001 From: Justin Erenkrantz Date: Sun, 13 Nov 2005 05:38:43 +0000 Subject: [PATCH] Update transformations. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@332898 13f79535-47bb-0310-9956-ffa450edef68 --- docs/man/htpasswd.1 | 8 +++++++- docs/manual/mod/core.xml.de | 2 +- docs/manual/mod/core.xml.ja | 2 +- docs/manual/mod/mod_authn_dbd.html.en | 4 ++-- docs/manual/mod/quickreference.html.en | 4 ++-- docs/manual/programs/htpasswd.html.en | 9 +++++++++ docs/manual/programs/htpasswd.xml.ko | 2 +- 7 files changed, 23 insertions(+), 8 deletions(-) diff --git a/docs/man/htpasswd.1 b/docs/man/htpasswd.1 index 6ecfb52d6e0..b1f854163a1 100644 --- a/docs/man/htpasswd.1 +++ b/docs/man/htpasswd.1 @@ -19,7 +19,7 @@ .el .ne 3 .IP "\\$1" \\$2 .. -.TH "HTPASSWD" 1 "2003-11-25" "Apache HTTP Server" "htpasswd" +.TH "HTPASSWD" 1 "2005-11-13" "Apache HTTP Server" "htpasswd" .SH NAME htpasswd \- Manage user files for basic authentication @@ -133,6 +133,12 @@ Web password files such as those managed by htpasswd should \fInot\fR be within .PP The use of the -b option is discouraged, since when it is used the unencrypted password appears on the command line\&. +.PP +When using the crypt() algorithm, note that only the first 8 characters of the password are used to form the password\&. If the supplied password is longer, the extra characters will be silently discarded\&. + +.PP +The SHA encryption format does not use salting: for a given password, there is only one encrypted representation\&. The crypt() and MD5 formats permute the representation by prepending a random salt string, to make dictionary attacks against the passwords more difficult\&. + .SH "RESTRICTIONS" .PP diff --git a/docs/manual/mod/core.xml.de b/docs/manual/mod/core.xml.de index 1deefbcc19f..f386cc72d79 100644 --- a/docs/manual/mod/core.xml.de +++ b/docs/manual/mod/core.xml.de @@ -1,7 +1,7 @@ - + + +