From owner-freebsd-current  Wed Apr  7  2:16:40 1999
Delivered-To: freebsd-current@freebsd.org
Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31])
	by hub.freebsd.org (Postfix) with ESMTP id 3326215575
	for <freebsd-current@FreeBSD.ORG>; Wed,  7 Apr 1999 02:16:37 -0700 (PDT)
	(envelope-from des@flood.ping.uio.no)
Received: (from des@localhost)
	by flood.ping.uio.no (8.9.2/8.9.1) id LAA66636;
	Wed, 7 Apr 1999 11:14:37 +0200 (CEST)
	(envelope-from des)
To: Anders Andersson <anders@sanyusan.se>
Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>,
	freebsd-current@FreeBSD.ORG
Subject: Re: DES from source?
References: <19990403122221.A12230@sanyusan.se> <xzplng9oh01.fsf@flood.ping.uio.no> <19990407105126.A6886@sanyusan.se>
From: Dag-Erling Smorgrav <des@flood.ping.uio.no>
Date: 07 Apr 1999 11:14:37 +0200
In-Reply-To: Anders Andersson's message of "Wed, 7 Apr 1999 10:51:26 +0200"
Message-ID: <xzp3e2crdvm.fsf@flood.ping.uio.no>
Lines: 11
X-Mailer: Gnus v5.5/Emacs 19.34
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Anders Andersson <anders@sanyusan.se> writes:
> Maybe I just should purify my network to loose those DES boxes and run
> FreeBSD md5 native only, that would be more secure and faster right?

More secure and *slower*. When it comes to password hashing, slower is
better, because it makes brute force and dictionary attacks more
expensive.

DES
-- 
Dag-Erling Smorgrav - des@flood.ping.uio.no


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message