Date: Tue, 21 Apr 1998 19:19:34 +0200 From: Mark Murray <mark@grondar.za> To: woods@zeus.leitch.com (Greg A. Woods) Cc: freebsd-security@FreeBSD.ORG Subject: Re: Using MD5 insted of DES for passwd ecnryption Message-ID: <199804211719.TAA14995@greenpeace.grondar.za>
next in thread | raw e-mail | index | archive | help
Greg A. Woods wrote: > In any case I'd be horrified to learn that whatever scheme of > controlling password encryption is chosen relies on shared libraries. > I think it should always be possible to statically link the whole system > if one so desires. That's the one sure way to test if shared libraries > are causing any weirdness. At least one scheme that was discussed in the passed involved not shared LIBRARIES, but shared OBJECTS (.so files). This would allow an app to link to some code at runtime _if_it_existed_ (as in the case of optional DES code). This idea requires that the dlopen(3) and friends that are used for static objects will work appropriately. Some folk (JDP?) suggested that this was theoretically possible "with a bit of work" (Such work not done to date). M -- Mark Murray Join the anti-SPAM movement: http://www.cauce.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199804211719.TAA14995>