Re: crypt_r()?

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: crypt_r()?
From: Martin Husemann <martin%duskware.de@localhost>
Date: Wed, 16 Feb 2022 16:38:20 +0100

On Wed, Feb 16, 2022 at 10:27:08AM -0500, Mouse wrote:
> That sounds like a recipe for disaster.  It is a complete fail for
> heterogenous environments where the same hash needs to be checkable on
> widely disparate hardware, where a small machine may not have the
> resources to perform the check _at all_.

It is managable and configurable. You can configure your passwd.master
to not use argon2 at all, or you can use the settings on one of the smaller
machines and copy that over to the others (or only ever add new users
on that machine and copy the hash over).

We tested the NetBSD passwd implementation using argon2 on a
SparcStation LX and it auto-configured itself fine. I should
have tested on the VAX and the mac68k too, but updating those was 
inconveninent at the time nia did the changes - but I'm sure both will
work fine too.

Martin

References:
- crypt_r()?
  - From: Thomas Klausner
- Re: crypt_r()?
  - From: Niclas Rosenvik
- Re: crypt_r()?
  - From: Joerg Sonnenberger
- Re: crypt_r()?
  - From: Niclas Rosenvik
- Re: crypt_r()?
  - From: Joerg Sonnenberger
- Re: crypt_r()?
  - From: Mouse
- Re: crypt_r()?
  - From: Joerg Sonnenberger
- Re: crypt_r()?
  - From: Mouse

Prev by Date: Re: crypt_r()?
Next by Date: Re: crypt_r()?
Previous by Thread: Re: crypt_r()?
Next by Thread: Re: crypt_r()?
Indexes:

Home | Main Index | Thread Index | Old Index