Date: Fri, 14 Feb 1997 22:55:26 +0200 From: Mark Murray <mark@grondar.za> To: Brandon Gillespie <brandon@cold.org> Cc: security@freebsd.org Subject: Re: blowfish passwords in FreeBSD Message-ID: <199702142055.WAA18587@grackle.grondar.za>
next in thread | raw e-mail | index | archive | help
Brandon Gillespie wrote: > > I have your scheme commit-ready now. It looks like we'll have too merge > > in this as well. > > Actually, I'd like to also submit a patch for 'passwd' that reads > something like /etc/passwd.conf for a 'preference', where the file simply > contains 'best' 'DES' or a $x$ prefix. If it is 'best' it'll use the > best/latest algorithm, DES is obvious, otherwise it just prefixes the > '$x$' string in the file to the salt. I'd like this because for me, I > have many older DES passwords from upgrades, and I'd like to migrate to > better passwords but right now if DES exists as an option, it is always > given encryption preference in 'passwd'.. I'd like to extend this a bit. DES has some options; vanilla and estended (and extended has an iteration count). Extended DES is recognisable by a longer cryptstream "_ssssiiiippppppppppp" where ssss is salt, iiii is iteration and ppppppp is hashed password. iiii and ssss are (sort of) uuencoded, M -- Mark Murray PGP key fingerprint = 80 36 6E 40 83 D6 8A 36 This .sig is umop ap!sdn. BC 06 EA 0E 7A F2 CE CE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702142055.WAA18587>