Current-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Which password cipher ?

On Wed, Dec 01, 2010 at 06:07:39PM -0500, Thor Lancelot Simon wrote:
> On Thu, Dec 02, 2010 at 12:02:32AM +0100, Joerg Sonnenberger wrote:
> > 
> > It discusses some of the possible attack vectors. IMO we should make the
> > Blowfish or SHA1 based cypher the default and not ask. The only case
> Then it should be SHA1, because that's the only choice various standards
> will allow (the only Approved underlying cryptographic algorithm).

Agreed. Both allow variable number of rounds to increase the time

> The problem is NIS.  There interoperability is a real issue, and we
> probably do need to ask.

See C&P of master.passwd :) I think it only matters on the master and
only for !root accounts. So you have enough time to choose a different
cipher after installation.


Home | Main Index | Thread Index | Old Index