From owner-freebsd-security@FreeBSD.ORG  Fri Jun  8 17:28:58 2012
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D38081065670
	for <freebsd-security@freebsd.org>;
	Fri,  8 Jun 2012 17:28:58 +0000 (UTC) (envelope-from ruud@stack.nl)
Received: from mx1.stack.nl (relay02.stack.nl [IPv6:2001:610:1108:5010::104])
	by mx1.freebsd.org (Postfix) with ESMTP id 6C8298FC18
	for <freebsd-security@freebsd.org>;
	Fri,  8 Jun 2012 17:28:58 +0000 (UTC)
Received: from hammer.stack.nl (hammer.stack.nl [IPv6:2001:610:1108:5010::153])
	by mx1.stack.nl (Postfix) with ESMTP id 33B713592FD;
	Fri,  8 Jun 2012 19:28:57 +0200 (CEST)
Received: by hammer.stack.nl (Postfix, from userid 1965)
	id 27AC660EB; Fri,  8 Jun 2012 19:28:57 +0200 (CEST)
Date: Fri, 8 Jun 2012 19:28:57 +0200
From: Ruud Althuizen <ruud@stack.nl>
To: RW <rwmaillists@googlemail.com>
Message-ID: <20120608172857.GE2410@stack.nl>
References: <86r4tqotjo.fsf@ds4.des.no>
	<20120608174708.65bc90db@gumby.homeunix.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="lMM8JwqTlfDpEaS6"
Content-Disposition: inline
In-Reply-To: <20120608174708.65bc90db@gumby.homeunix.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Cc: freebsd-security@freebsd.org
Subject: Re: Default password hash
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Ruud Althuizen <ruud@stack.nl>
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Jun 2012 17:28:58 -0000


--lMM8JwqTlfDpEaS6
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri 08 Jun 2012 05:47 PM, RW wrote:
> On Fri, 08 Jun 2012 14:51:55 +0200
> Dag-Erling Sm=C3=B8rgrav wrote:
>=20
> > We still have MD5 as our default password hash, even though known-hash
> > attacks against MD5 are relatively easy these days. =20
>=20
> Are any of those attacks relevant to salted passwords even with a
> single MD5 hash, let alone FreeBSD's complicated iterative algorithm?=20
Complication isn't your friend when considering cryptography.

--=20
With kind regards,
Ruud Althuizen

--lMM8JwqTlfDpEaS6
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (FreeBSD)

iEYEARECAAYFAk/SNlkACgkQkqncCMFskRU+NgCfXMQOI9o3edJJDVEeqQQB3qQT
OJsAoIMswOLjYAWVS5XKEs2Sci5iB7AJ
=fysR
-----END PGP SIGNATURE-----

--lMM8JwqTlfDpEaS6--