Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 199453

Summary: htpasswd2 truncates my password
Product: Gentoo Linux Reporter: Joel <joel>
Component: [OLD] ServerAssignee: Gentoo Linux bug wranglers <bug-wranglers>
Status: RESOLVED INVALID    
Severity: critical    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Joel 2007-11-17 16:15:51 UTC 
I didn't know were put this, so I put it here, sorry if I am wrong. It's the first time I set up a webserver, and I was following this http://gentoo-wiki.com/HOWTO_Apache2_with_subversion_SVN_and_DAV.
My password was long (generated with htpasswd2 and it was about 30 characters Capitalized with strange symbols @,#, etc and numbers) but if I put only one part of the password (starting from the begining) apache let me enter into my svn (if I put another password, the access is denied). What happens?

Reproducible: Always
Comment 1 Jakub Moc (RETIRED) gentoo-dev 2007-11-17 16:49:24 UTC 
Please post exact to steps to reproduce the bug, instead of vague info.

- apache/apache-tools versions
- how's your authentication configured in apache (relevant part of the conf file)
- exact command used to generate the password and the result
- what's exactly 'one part' here?
Comment 2 Carsten Lohrke (RETIRED) gentoo-dev 2007-11-17 16:49:59 UTC 
First: gentoo-wiki.com is completely independent from gentoo.org, so please don't file any bugs, when you blindly follow the information this wiki provides. We have nothing to do with it. Second: As written down in the htpasswd man page, when using the crypt algorithmen, it uses only eight characters and discards the rest of your password.