From owner-freebsd-security Fri Feb 14 12:56:08 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA00648 for security-outgoing; Fri, 14 Feb 1997 12:56:08 -0800 (PST) Received: from grackle.grondar.za (WpHLAAnjAwqHM/llDbuaSXJ0LIOqCADn@grackle.grondar.za [196.7.18.131]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA00614 for ; Fri, 14 Feb 1997 12:55:58 -0800 (PST) Received: from grackle.grondar.za (xxJbUMlog3cqsrLrhF4N39E4KiuWjGgZ@localhost [127.0.0.1]) by grackle.grondar.za (8.8.5/8.8.4) with ESMTP id WAA18587; Fri, 14 Feb 1997 22:55:36 +0200 (SAT) Message-Id: <199702142055.WAA18587@grackle.grondar.za> X-Mailer: exmh version 2.0gamma 1/27/96 To: Brandon Gillespie cc: security@freebsd.org Subject: Re: blowfish passwords in FreeBSD Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 14 Feb 1997 22:55:26 +0200 From: Mark Murray Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Brandon Gillespie wrote: > > I have your scheme commit-ready now. It looks like we'll have too merge > > in this as well. > > Actually, I'd like to also submit a patch for 'passwd' that reads > something like /etc/passwd.conf for a 'preference', where the file simply > contains 'best' 'DES' or a $x$ prefix. If it is 'best' it'll use the > best/latest algorithm, DES is obvious, otherwise it just prefixes the > '$x$' string in the file to the salt. I'd like this because for me, I > have many older DES passwords from upgrades, and I'd like to migrate to > better passwords but right now if DES exists as an option, it is always > given encryption preference in 'passwd'.. I'd like to extend this a bit. DES has some options; vanilla and estended (and extended has an iteration count). Extended DES is recognisable by a longer cryptstream "_ssssiiiippppppppppp" where ssss is salt, iiii is iteration and ppppppp is hashed password. iiii and ssss are (sort of) uuencoded, M -- Mark Murray PGP key fingerprint = 80 36 6E 40 83 D6 8A 36 This .sig is umop ap!sdn. BC 06 EA 0E 7A F2 CE CE