Subject: Re: PROPOSAL: adding capability for blowfish passwords
To: Steven M. Bellovin <firstname.lastname@example.org>
From: Perry E. Metzger <email@example.com>
Date: 05/24/2002 11:34:09
"Steven M. Bellovin" <firstname.lastname@example.org> writes:
> In my opinion, there's no technical reason to do it. If you want to
> add a new scheme, SHA512 would be a much better choice. The only
> reason I can see is password file compatibility with OpenBSD.
I have to agree with Steve on this. Blowfish is not a particularly
well understood hash algorithm, and in general SHA* are a well
understood and standardized set of hash algorithms.
Perry E. Metzger email@example.com
NetBSD: The right OS for your embedded design. http://www.wasabisystems.com/