MacNN Forums (http://forums.macnn.com/)
-   Mac OS X (http://forums.macnn.com/mac-os-x/)
-   -   What is the maximum password length for OS X ML? (http://forums.macnn.com/90/mac-os-x/496597/what-maximum-password-length-os-x/)

 
Tyre MacAdmin Dec 28, 2012 02:19 AM
What is the maximum password length for OS X ML?
Does anyone know what the maximum password length for OS X Mountain Lion is?
 
mduell Dec 28, 2012 07:18 AM
OS X originally only cared about the first 8 characters of the password, everything after that is allowed but ignored. I haven't seen any notes about this changing.
 
Thinine Dec 29, 2012 03:41 PM
That hasn't been true for years now. As for the maximum I have no idea.
 
P Jan 6, 2013 02:53 PM
There is no maximum in the system per se - you can enter the entire text of Moby Dick if you want to - but I suspect that the the change password dialog box has some sort of upper limit, and you don't add any more entropy after 64.
 
mattyb Jan 7, 2013 07:51 AM
 
turtle777 Jan 7, 2013 08:13 AM
Quote, Originally Posted by mattyb (Post 4210527)
I wonder if the modification date was set based on the article being archived.

It's odd that it mentions "Products Affected: Mac OS X 10.0".

-t
 
mattyb Jan 7, 2013 08:40 AM
From a post on this page : Maximum password length? - MacRumors Forums - from 2002 BTW

Any UNIX that is still using a DES crypt(). I haven't use many commercial unices lately (well, except OS X), but I'd be willing to bet most have moved to an MD5 crypt. (which allows for passwords > 8 chars). Modern linux and BSD distributions have. I have no idea why OS X isn't using MD5.

And a bit more info here : http://stackoverflow.com/questions/3...ssword-on-os-x
 
mattyb Jan 7, 2013 08:44 AM
 
P Jan 7, 2013 09:49 AM
Mac OS X Mountain Lion currently stores passwords using a SHA-512 hash with a 32 bit salt. The initial versions indeed used DES (which ignores anything beyond chars), but the last one to do that was 10.2. 10.3 had a freaky way of getting in by only using the first 14 chars (because Apple wanted compatibility with Windows and had not implemented NTLM authorization, they also stored a LANMAN hash, which is limited to 14 chars) but not for the main login window, and that hole has also been closed for a long time now.
 
All times are GMT -4. The time now is 07:29 PM.

Copyright © 2005-2007 MacNN. All rights reserved.
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2016, vBulletin Solutions, Inc.


Content Relevant URLs by vBSEO 3.3.2