Subject: Re: PROPOSAL: adding capability for blowfish passwords
To: Steven M. Bellovin <email@example.com>
From: Andrew Brown <firstname.lastname@example.org>
Date: 05/24/2002 13:49:47
>>> hmm. i see. we should implement $2$ as openbsd does (there's no need
>>> to be different), and the above algorithm can become $3$.
>>the $3$ notion is probably an idea to mention on bsd-api-discuss...
>My personal preference would be $hmac-sha512$, but I'm not dogmatic
imho, that makes *so* much more sense than the 2 minutes of obscurity
a given number gives you...
...unless we wanted to get crazy and start putting things like
"hmac-sha512@NetBSD" in there to imply a "vendor specific" nature to
|-----< "CODE WARRIOR" >-----|
email@example.com * "ah! i see you have the internet
firstname.lastname@example.org (Andrew Brown) that goes *ping*!"
email@example.com * "information is power -- share the wealth."