[src/trunk]: src passwd.conf(5): switch default cipher for new user accounts ...

To: source-changes-hg%NetBSD.org@localhost
Subject: [src/trunk]: src passwd.conf(5): switch default cipher for new user accounts ...
From: nia <nia%NetBSD.org@localhost>
Date: Mon, 08 Nov 2021 15:49:42 +0000

details:   https://anonhg.NetBSD.org/src/rev/017cf77ed03c
branches:  trunk
changeset: 1024499:017cf77ed03c
user:      nia <nia%NetBSD.org@localhost>
date:      Tue Oct 26 20:44:45 2021 +0000

description:
passwd.conf(5): switch default cipher for new user accounts to Argon2id

As well as offering a dynamic amount of iterations and memory usage,
which fits well with NetBSD's goal of running on a diverse range of
hardware devices, Argon2id offers improved resistance to GPU-based
password cracking and side channel attacks.

diffstat:

 etc/passwd.conf              |   4 ++--
 share/man/man5/passwd.conf.5 |  13 +++++++++++--
 2 files changed, 13 insertions(+), 4 deletions(-)

diffs (46 lines):

diff -r 7d997d3e35bb -r 017cf77ed03c etc/passwd.conf
--- a/etc/passwd.conf   Tue Oct 26 20:43:35 2021 +0000
+++ b/etc/passwd.conf   Tue Oct 26 20:44:45 2021 +0000
@@ -1,9 +1,9 @@
-#      $NetBSD: passwd.conf,v 1.3 2010/12/03 21:40:04 jmmv Exp $
+#      $NetBSD: passwd.conf,v 1.4 2021/10/26 20:44:45 nia Exp $
 #
 # passwd.conf(5) -
 #      password configuration file
 #
 
 default:
-       localcipher = sha1
+       localcipher = argon2id
        ypcipher = old
diff -r 7d997d3e35bb -r 017cf77ed03c share/man/man5/passwd.conf.5
--- a/share/man/man5/passwd.conf.5      Tue Oct 26 20:43:35 2021 +0000
+++ b/share/man/man5/passwd.conf.5      Tue Oct 26 20:44:45 2021 +0000
@@ -1,4 +1,4 @@
-.\"    $NetBSD: passwd.conf.5,v 1.12 2021/10/12 11:08:14 nia Exp $
+.\"    $NetBSD: passwd.conf.5,v 1.13 2021/10/26 20:44:45 nia Exp $
 .\"
 .\" Copyright 1997 Niels Provos <provos%physnet.uni-hamburg.de@localhost>
 .\" All rights reserved.
@@ -28,7 +28,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd October 12, 2021
+.Dd October 26, 2021
 .Dt PASSWD.CONF 5
 .Os
 .Sh NAME
@@ -139,3 +139,12 @@
 .Pa /etc/passwd.conf
 starting from
 .Nx 6.0 .
+.Pp
+The default value of
+.Sy localcipher
+was set to
+.Dq argon2id 
+in
+.Pa /etc/passwd.conf
+starting from
+.Nx 10.0 .

Prev by Date: [src/trunk]: src/usr.bin/indent indent: make ps.keyword easier to understand
Next by Date: [src/trunk]: src/usr.bin/indent indent: make reformatting of comments simpler
Previous by Thread: [src/trunk]: src/usr.bin/indent indent: make ps.keyword easier to understand
Next by Thread: [src/trunk]: src/usr.bin/indent indent: make reformatting of comments simpler
Indexes:

Home | Main Index | Thread Index | Old Index