Subject: Re: default passwd.conf file
To: Perry E. Metzger <>
From: Andrew Brown <>
List: tech-security
Date: 04/13/2002 21:59:11
>Unless there are quite solid objections, I would to to make the
>following our standard /etc/passwd.conf:
>        localcipher = md5
>        ypcipher = old
>Note that there is no obvious reason to object. Old password files
>will still work. New passwords will use md5, but if an admin doesn't
>like that he can just change localcipher to old.

make it all commented out defaults, as with other config files (eg,
ssh), and add a reference at the top to passwd.conf(5).

|-----< "CODE WARRIOR" >-----|             * "ah!  i see you have the internet (Andrew Brown)                that goes *ping*!"       * "information is power -- share the wealth."