RE: Which password cipher ?

To: Julio Merino <jmmv84%gmail.com@localhost>, Steven Bellovin <smb%cs.columbia.edu@localhost>
Subject: RE: Which password cipher ?
From: Joel Carnat <joel%carnat.net@localhost>
Date: Wed, 1 Dec 2010 15:44:18 +0100

-----Message initial-----
<snip>
> 
> The simple answer is password file compatibility -- other systems accept the 
> older formats.  Over the years, I've seen many instances where someone will 
> say 
> "send me your passwd file line".  DES is the most compatible; the Blowfish 
> and 
> md5 methods are used by other open source systems; the HMAC-SHA1 scheme was 
> developed for NetBSD and doesn't exist elsewhere unless they've picked up our 
> code.
> 

As a user, a message such as the one above would have helped me choose more 
easily.

Replacing the actual list with a "preferred cipher" ordered list would enable 
n00b
users like me to "click next"(c) and have a default strong encryption system
and road-warriors to still be able to configure the right cipher to integrate
there complex IT infrastructure.

BTW, I'll use SHA-1, thanks Steven :)

Follow-Ups:
- Re: Which password cipher ?
  - From: David Laight

References:
- Re: Which password cipher ?
  - From: Steven Bellovin

Prev by Date: config rootdev problem
Next by Date: RE: Which password cipher ?
Previous by Thread: Re: Which password cipher ?
Next by Thread: Re: Which password cipher ?
Indexes:

Home | Main Index | Thread Index | Old Index