Subject: Re: PROPOSAL: adding capability for blowfish passwords
To: Steven M. Bellovin <>
From: Perry E. Metzger <>
List: current-users
Date: 05/24/2002 11:34:09
"Steven M. Bellovin" <> writes:
> In my opinion, there's no technical reason to do it.  If you want to 
> add a new scheme, SHA512 would be a much better choice.  The only 
> reason I can see is password file compatibility with OpenBSD.

I have to agree with Steve on this. Blowfish is not a particularly
well understood hash algorithm, and in general SHA* are a well
understood and standardized set of hash algorithms.

Perry E. Metzger
NetBSD: The right OS for your embedded design.