From a0fe319ce069e15646077a635bc970b961124540 Mon Sep 17 00:00:00 2001 From: Stephen Hemminger Date: Thu, 3 Sep 2009 11:11:32 -0700 Subject: Validate encrypted password field Enforce syntax checks on encrypted password field to prevent user errors. Bug: 4077 --- .../user/node.tag/authentication/encrypted-password/node.def | 9 +++++++++ 1 file changed, 9 insertions(+) (limited to 'templates/system') diff --git a/templates/system/login/user/node.tag/authentication/encrypted-password/node.def b/templates/system/login/user/node.tag/authentication/encrypted-password/node.def index 3c12bdc3..5234702b 100644 --- a/templates/system/login/user/node.tag/authentication/encrypted-password/node.def +++ b/templates/system/login/user/node.tag/authentication/encrypted-password/node.def @@ -1,2 +1,11 @@ type: txt help: Set encrypted password +# Allow * or ! to disable account +# DES format password (13 characters) +# MD5 format ($1) and SHA format passwords +syntax:expression: ($VAR(@) == "*" || $VAR(*) == "!" \ + || ( pattern $VAR(@) "^[a-zA-Z0-9\.\/]{13}$" ) \ + || ( pattern $VAR(@) "^\\$1\\$[a-zA-Z0-9\.\/]{8}\\$[a-zA-Z0-9\.\/]{22}$" ) \ + || ( pattern $VAR(@) "^\\$5\\$[a-zA-Z0-9\.\/]{16}\\$[a-zA-Z0-9\.\/]{43}$" ) \ + || ( pattern $VAR(@) "^\\$6\\$[a-zA-Z0-9\.\/]{16}\\$[a-zA-Z0-9\.\/]{86}$" )) \ + ; "Not a valid encrypted password for user $VAR(../../@)" -- cgit v1.2.3