Subject: Re: PROPOSAL: adding capability for blowfish passwords
To: Steven M. Bellovin <smb@research.att.com>
From: Perry E. Metzger <perry@wasabisystems.com>
List: current-users
Date: 05/24/2002 11:34:09
"Steven M. Bellovin" <smb@research.att.com> writes:
> In my opinion, there's no technical reason to do it. If you want to
> add a new scheme, SHA512 would be a much better choice. The only
> reason I can see is password file compatibility with OpenBSD.
I have to agree with Steve on this. Blowfish is not a particularly
well understood hash algorithm, and in general SHA* are a well
understood and standardized set of hash algorithms.
--
Perry E. Metzger perry@wasabisystems.com
--
NetBSD: The right OS for your embedded design. http://www.wasabisystems.com/