Import NetBSD's passwd.conf

Without this file, the NetBSD userland will fall back by default to the
old, insecure classic UNIX password hashing algorithm.

This is a big security issue. Please check docs/UPDATING for details.

Change-Id: Ib85646ee4678f91384bab238426ee55ff26da011

distrib/sets/lists/minix-base/mi

@@ -116,6 +116,7 @@
 ./etc/openssl/misc                                      minix-base      crypto
 ./etc/openssl/private                                   minix-base      crypto
 ./etc/passwd                                            minix-base
+./etc/passwd.conf                                       minix-base
 ./etc/profile                                           minix-base
 ./etc/protocols                                         minix-base
 ./etc/pwd.db                                            minix-base

docs/UPDATING

@@ -1,3 +1,11 @@
+20170122:
+	MINIX 3 did not import NetBSD's passwd.conf file, which makes the
+	userland fall back by default to the old, broken UNIX password hashing
+	algorithm. Among other problems, it truncates passwords to the first
+	eight characters.
+
+	Please install /etc/passwd.conf and reset your passwords with passwd.
+
 20160702:
 	Some tools are required to generate the locale resources which are
 	embedded into libintl, which is why you need to run the following:

etc/Makefile

@@ -96,7 +96,7 @@ UTMPGRP= utmp
 .if defined(__MINIX)
 BIN1+=	boot.cfg.default \
 	man.conf \
-	protocols rc rc.cd rc.subr \
+	passwd.conf protocols rc rc.cd rc.subr \
 	rc.daemons.dist rs.inet rs.single \
 	services shells syslog.conf \
 	termcap utmp gettytab rc.shutdown

etc/passwd.conf

@@ -0,0 +1,9 @@
+#	$NetBSD: passwd.conf,v 1.3 2010/12/03 21:40:04 jmmv Exp $
+#
+# passwd.conf(5) -
+#	password configuration file
+#
+
+default:
+	localcipher = sha1
+	ypcipher = old