From owner-freebsd-security Fri Feb 14 12:48:23 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA00266 for security-outgoing; Fri, 14 Feb 1997 12:48:23 -0800 (PST) Received: from cold.org (cold.org [206.81.134.103]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA00257 for ; Fri, 14 Feb 1997 12:48:20 -0800 (PST) Received: from localhost (brandon@localhost) by cold.org (8.8.5/8.8.3) with SMTP id NAA04390; Fri, 14 Feb 1997 13:48:14 -0700 (MST) Date: Fri, 14 Feb 1997 13:48:14 -0700 (MST) From: Brandon Gillespie To: Mark Murray cc: security@freebsd.org Subject: Re: blowfish passwords in FreeBSD In-Reply-To: <199702141927.VAA18273@grackle.grondar.za> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > I have your scheme commit-ready now. It looks like we'll have too merge > in this as well. Actually, I'd like to also submit a patch for 'passwd' that reads something like /etc/passwd.conf for a 'preference', where the file simply contains 'best' 'DES' or a $x$ prefix. If it is 'best' it'll use the best/latest algorithm, DES is obvious, otherwise it just prefixes the '$x$' string in the file to the salt. I'd like this because for me, I have many older DES passwords from upgrades, and I'd like to migrate to better passwords but right now if DES exists as an option, it is always given encryption preference in 'passwd'.. -Brandon Gillespie