Date: Fri, 09 Jan 2009 00:03:31 +0100 From: "O. Hartmann" <ohartman@mail.zedat.fu-berlin.de> To: Mike Tancsa <mike@sentex.net> Cc: freebsd-security@freebsd.org Subject: Re: MD5 vs. SHA1 hashed passwords in /etc/master.passwd: can we configure SHA1 in /etc/login.conf? Message-ID: <49668643.7050507@mail.zedat.fu-berlin.de> In-Reply-To: <200901040346.n043kRCJ000646@lava.sentex.ca> References: <495FDC97.4090301@mail.zedat.fu-berlin.de> <200901040346.n043kRCJ000646@lava.sentex.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
Mike Tancsa wrote: > At 04:45 PM 1/3/2009, O. Hartmann wrote: > >> followed by a obligatory "cap_mkdb" seems to do something - changing >> root's password results in different hashes when selecting different >> hash algorithms like des, md5, sha1, blf or even sha256. >> >> Well, I never digged deep enough into the source code to reveal the >> magic and truth, so I will ask here for some help. Is it possible to >> change the md5-algorithm by default towards sha1 as recommended after >> the md5-collisions has been published? > > Are you sure sha1 is supported ? It looks like if you put in something > not understood in the login.conf file, it defaults to what appears to > be DES. > > ---Mike > >> Thanks in advance, >> Oliver Yes, you're absolutely right, I figured this also out after I tried evey possible hashing alogrithmen mentioned in the manpage. I use 'blf' now. Regards, Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49668643.7050507>