[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Which password cipher ?
On Wed, Dec 01, 2010 at 06:07:39PM -0500, Thor Lancelot Simon wrote:
> On Thu, Dec 02, 2010 at 12:02:32AM +0100, Joerg Sonnenberger wrote:
> > It discusses some of the possible attack vectors. IMO we should make the
> > Blowfish or SHA1 based cypher the default and not ask. The only case
> Then it should be SHA1, because that's the only choice various standards
> will allow (the only Approved underlying cryptographic algorithm).
Agreed. Both allow variable number of rounds to increase the time
> The problem is NIS. There interoperability is a real issue, and we
> probably do need to ask.
See C&P of master.passwd :) I think it only matters on the master and
only for !root accounts. So you have enough time to choose a different
cipher after installation.
Main Index |
Thread Index |