From owner-freebsd-questions Sun Jul 16 5:23:34 2000 Delivered-To: freebsd-questions@freebsd.org Received: from ipamzlx.physik.uni-mainz.de (ipamzlx.Physik.Uni-Mainz.DE [134.93.180.54]) by hub.freebsd.org (Postfix) with ESMTP id 1FDE737BBC8 for ; Sun, 16 Jul 2000 05:23:30 -0700 (PDT) (envelope-from ohartman@ipamzlx.physik.uni-mainz.de) Received: from ipamzlx.Physik.Uni-Mainz.DE (ipamzlx.Physik.Uni-Mainz.DE [134.93.180.54]) by ipamzlx.physik.uni-mainz.de (8.9.3/8.9.3) with ESMTP id OAA00569 for ; Sun, 16 Jul 2000 14:25:24 +0200 (CEST) (envelope-from ohartman@ipamzlx.physik.uni-mainz.de) Date: Sun, 16 Jul 2000 14:25:24 +0200 (CEST) From: "O. Hartmann" To: questions@freebsd.org Subject: DES or Standard CRYPT? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG FreeBSD 4.0 comes with two different ways of encrypting passwords, either MD5 oder DES. I figured out that using DES limits the password lenth up to 8 characters, while MD5 allows a maximum of 128 characters. The question I ask is: what kind of encryption service/lib should we use to have a secure system? Is MD5 hash sufficient or should we use DES? When linking libcrypt -> libdes, what is involved by this links? Only UNIX password encryption or other facilities? Is X11 hard-coded limited to use login (which refelcts the used lib by limiting the length of the password, also) or is it possible to configure X11 login to use something else? Gruss O. Hartmann ------------------------------------------------------------------- ohartman@ipamzlx.physik.uni-mainz.de Klimadatenserver des IPA, Universitaet Mainz Netzwerk- und Systembetreuung To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message