From owner-freebsd-questions@FreeBSD.ORG  Sat Jun 23 14:09:43 2012
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 67E671065678
	for <freebsd-questions@freebsd.org>;
	Sat, 23 Jun 2012 14:09:43 +0000 (UTC)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from wojtek.tensor.gdynia.pl (wojtek.tensor.gdynia.pl [89.206.35.99])
	by mx1.freebsd.org (Postfix) with ESMTP id CBF968FC08
	for <freebsd-questions@freebsd.org>;
	Sat, 23 Jun 2012 14:09:42 +0000 (UTC)
Received: from wojtek.tensor.gdynia.pl (localhost [127.0.0.1])
	by wojtek.tensor.gdynia.pl (8.14.5/8.14.5) with ESMTP id q5NE9gqY039021;
	Sat, 23 Jun 2012 16:09:43 +0200 (CEST)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from localhost (wojtek@localhost)
	by wojtek.tensor.gdynia.pl (8.14.5/8.14.5/Submit) with ESMTP id
	q5NE9gQG039018; Sat, 23 Jun 2012 16:09:42 +0200 (CEST)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Date: Sat, 23 Jun 2012 16:09:42 +0200 (CEST)
From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl>
To: "Christopher J. Ruwe" <cjr@cruwe.de>
In-Reply-To: <20120623155957.570eff66@dijkstra.cruwe.de>
Message-ID: <alpine.BSF.2.00.1206231608080.38992@wojtek.tensor.gdynia.pl>
References: <20120623153710.36e7446f@dijkstra.cruwe.de>
	<alpine.BSF.2.00.1206231540400.38775@wojtek.tensor.gdynia.pl>
	<20120623155957.570eff66@dijkstra.cruwe.de>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.2.7
	(wojtek.tensor.gdynia.pl [127.0.0.1]);
	Sat, 23 Jun 2012 16:09:43 +0200 (CEST)
Cc: freebsd-questions@freebsd.org
Subject: Re: changing md5 hashed for sha
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Jun 2012 14:09:43 -0000

>>> been recommended changing md5 for something more secure in the
>>> sense of being more expensive to crack.
>>
>> is md5 that easy to crack?
>
> It has been discussed recently, cf
> http://lists.freebsd.org/pipermail/freebsd-security/2012-June/006271.html
> or virtually the first half of
> http://lists.freebsd.org/pipermail/freebsd-security/2012-June/thread.html
>
wasn't aware md5 is really risky. thanks.
anyway - as long as someone don't actually get /etc/master.passwd it 
doesn't matter, it could be even plaintext here.

If someone can get /etc/master.passwd then he/she most probably already 
got root priviledge :)