Site Navigation

Date:      Mon, 30 Sep 2013 14:16:11 -0400
From:      "A.J. Kehoe IV (Nanoman)" <nanoman@nanoman.ca>
To:        FreeBSD-current@FreeBSD.org
Subject:   Better Password Hashes
Message-ID:  <20130930181611.GA90404@nanocomputer.nanoman.ca>

---

next in thread | raw e-mail | index | archive | help

---

[-- Attachment #1 --]
On the FreeBSD-security mailing list earlier this year, I brought up the issue of improving password hashes.  The patches I included were for FreeBSD 9-STABLE, which is what I use primarily.

gjb@ kindly advised me that the patches would need to be extensively tested on CURRENT before they'd be merged into 9-STABLE.  Derek Marcotte, who wrote the patches, sent me his updated versions for CURRENT, and I've submitted these in a PR:

http://www.freebsd.org/cgi/query-pr.cgi?pr=182518

(My apologies for neglecting to prefix the PR's Subject line with "[patch]".)

I've been using Derek's patches on my own production systems for the past few months, and I'm happy to say that they're working perfectly.  So, what we need now is to have these audited and tested by a larger audience, and then merged into 9-STABLE when a sufficient number of people are satisfied.

Let the testing begin!

-- 
A.J. Kehoe IV (Nanoman)     |  /"\  ASCII Ribbon Campaign
Nanoman's Company           |  \ /   - No HTML/RTF in E-mail
E-mail: nanoman@nanoman.ca  |   X    - No proprietary attachments
WWW: http://www.nanoman.ca/ |  / \   - Respect for open standards

[-- Attachment #2 --]
0�P	*�H��

��A0�=

10	+0	*�H��


���0�w0�_�

�[0
	*�H��


0y10U
Root CA10Uhttp://www.cacert.org1"0 UCA Cert Signing Authority1!0	*�H��

	
support@cacert.org0
130906235134Z
140305235134Z0=10UCAcert WoT User1!0	*�H��

	
nanoman@nanoman.ca0�
"0
	*�H��



�
0�

�

�VDj�
@�[H}����K�4��٪�:�C�J�yc��k�Xm�i��
~��F
6��x�1�JoeHQL`�w&.��P��H"w�}��|��oѬݘ2r6���ڛ?�
p���	.����y�a�w� �Nc��^�ʽ��h��N��mH�o$��l��sB1h���X�y�
��XU���ş������k�ք�))�Rn�Z�g_�Î��h�c$u��^��SϏ�d�moA�#k�����>��x����;�As�

��
B0�
>0U

�00V	`�H
��B

IGTo get your own certificate for FREE head over to http://www.CAcert.org0U

��0@U%907+
+

+

�7

+

�7
	`�H
��B
02+


&0$0"+
0
�http://ocsp.cacert.org01U*0(0&�$�"� http://crl.cacert.org/revoke.crl0U0�nanoman@nanoman.ca0
	*�H��


�
HO�7��췣�����=F�*M�k���-�r��
�|����#,�s0��y��9���9��oZ,�q�~�Y��I������}�s.P�!_���N�u�̈́l��[�Һ*u4��{��q\cj!��R��tj�O�_ڦr�ʳ�)��f���j�h�)c�@�7������B����tK���/��]�*JԁǞ�8ݸ�{Pu[~�7�1\��й���w;�\�\���M�������0f��v�m}`�]9v�g����A�6+1l}aAo ���u*у���\g�J��%���=�O��F���7M�!i�?��@D����G��|�pM�,�B��0��J�C�|u�=؜a6���;y?��$H��&Mj���7+�h4@�P��i�@2�+��[��J/$��3��O�bx�C;�.���(v9�+�7[�[JN��d��VJ�8N�`��^ʛ�Dɲ�i_٭ى��eR��kC�S����	�^�s�_63��o'$�~D�$������d{}>z;M�0�=0�%�

0
	*�H��


0y10U
Root CA10Uhttp://www.cacert.org1"0 UCA Cert Signing Authority1!0	*�H��

	
support@cacert.org0
030330122949Z
330329122949Z0y10U
Root CA10Uhttp://www.cacert.org1"0 UCA Cert Signing Authority1!0	*�H��

	
support@cacert.org0�"0
	*�H��



�0�
�
�"��F}�6(P��3@�K�;f?1�k6��|��Nw6A��	��F�s`�n~��Xd�Ͱ�Ec�g
��ҿ>���L���5]l!ޞ ٺ�f27r�����XɎ�^�>��
l��[df*z�KSy���{�/
a+��~MV���ڒ��DAX`ef��D�˔�B~�eh�Q������W��kz��r�%[ ���2�H��.0B�%�k?�:��SH��Ҷ���4��zX+[�8��]fɘמ����t��qr`��o�3��4v>$z���o�E8G��A�J�����.�	�Yת�ғ}h.݋K�X�/�ꕧ��T���ۋQ"��þ�,����x� ӊ/?��Qe�!�
eE��|�ALO)�!�3uQ�w�������i�"�Ṕ1�{8�h[�+�~�_���rL�
�K ���Wʑ
��u!7�c
g>FOp g���Y�����ͺb��A�� �)�d)B�"�x��C�	QKZZ�q���s��

��
�0�
�0U�2������Ұ:�9�0��U#��0����2������Ұ:�9ѡ}�{0y10U
Root CA10Uhttp://www.cacert.org1"0 UCA Cert Signing Authority1!0	*�H��

	
support@cacert.org�
0U

�0

�02U+0)0'�%�#�!https://www.cacert.org/revoke.crl00	`�H
��B
#!https://www.cacert.org/revoke.crl04	`�H
��B
'%http://www.cacert.org/index.php?id=100V	`�H
��B

IGTo get your own certificate for FREE head over to http://www.cacert.org0
	*�H��


�
(��\��5
�o�j���h��X�>��ÐZ��`��C
��p��b����gX
06;�H��t�q>�+h�4b@F;S�(���f�S�M]�;�`��yi;�e��Ɓ�\���M
���U��7���pa�j|���.T>O!���܂���E�M�s<�e��v��j��7$��NmQ��ďʖm�C��0e';{�CCc�C���h���"���{Z>
7;����N˛͚�۲p�-J�ذ�oEH3��<2*T������#�G�dzq���c�~�/�
�ܟ+����H%���B���>�W���i�w4
K�ʠ�ƌ����27hs_�Q�IS6
�L�y��:u���
pg���/��y��=�s���o�g��/�$�{�H5)@��`ᖆP�zY؏!�ς��;�k����V#��l��H<��N���/	�So.�t�:c�¦�����D�
��l�$����pG.��Բ 	��d�$ܡ5��ԼU.}��U�Z֓�v�%sL�C1�\0�X

0��0y10U
Root CA10Uhttp://www.cacert.org1"0 UCA Cert Signing Authority1!0	*�H��

	
support@cacert.org
�[0	+���0	*�H��

	1	*�H��


0	*�H��

	1
130930181611Z0#	*�H��

	1�Kg�䅲e	��������
o0R	*�H��

	1E0C0
*�H��
0*�H��
�0
*�H��

@0+0
*�H��

(0
	*�H��



�
uZ@y�_��;Ǔ�T{��,��~�3��5_��
8�����v&-��⡬�FSg��M��P"(�/��)���t���oY��������
�%�p�a�
SW�j\��c�Ǜ�q9�����z����;P���H*��Bu�ԁŊ���B}d�D��;H�����B�Dɬ�A� ��F�@�[�5�O���_��a�=^�RuN����_��,SY����)��{lU��%��&`]�er0�3�K�r�b�1�

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20130930181611.GA90404>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact