From owner-freebsd-questions@FreeBSD.ORG  Sat Jun 26 13:50:11 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 889E816A4CE
	for <freebsd-questions@freebsd.org>;
	Sat, 26 Jun 2004 13:50:11 +0000 (GMT)
Received: from internet.potentialtech.com (h-66-167-251-6.phlapafg.covad.net
	[66.167.251.6])	by mx1.FreeBSD.org (Postfix) with ESMTP id 548CA43D39
	for <freebsd-questions@freebsd.org>;
	Sat, 26 Jun 2004 13:50:11 +0000 (GMT)
	(envelope-from wmoran@potentialtech.com)
Received: from working.potentialtech.com
	(pa-plum-cmts1e-68-68-113-64.pittpa.adelphia.net [68.68.113.64])
	by internet.potentialtech.com (Postfix) with ESMTP id 2B02E69A39;
	Sat, 26 Jun 2004 09:49:33 -0400 (EDT)
Date: Sat, 26 Jun 2004 09:49:31 -0400
From: Bill Moran <wmoran@potentialtech.com>
To: jmlewis@dslextreme.com
Message-Id: <20040626094931.1bac7bb2.wmoran@potentialtech.com>
In-Reply-To: <1776a3885a58dea4d7ea.20040626010713.wzyrjvf@www.dslextreme.com>
References: <1776a3885a58dea4d7ea.20040626010713.wzyrjvf@www.dslextreme.com>
Organization: Potential Technologies
X-Mailer: Sylpheed version 0.9.10 (GTK+ 1.2.10; i386-portbld-freebsd4.9)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
cc: freebsd-questions@freebsd.org
Subject: Re: Building a Stable Secure FreeBSD Mail server
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 26 Jun 2004 13:50:11 -0000

"Joshua Lewis" <jmlewis@dslextreme.com> wrote:

> I have located what I feel is a very complete document on Building a
> Stable Secure FreeBSD Mail server (That happens to be the name of the Doc
> too. Go figure)
> 
> I am not sure what the age of this document is. In the document it reads:
> 
> "I like to change the default algorithm used when encrypting a user's
> password to the blowfish algorithm, as it provides the highest security at
> the greatest speed.
> 
> Is this an accurate statement? My current passwd_format is set to md5 and
> I thought md5 was like "Da Bomb"(Ok white guy trying to be funny here).
> 
> I am still pretty new, so I don't know the difference between these
> different algorithms. Any thoughts, comments, personal preferences (along
> with an understandable explanation would be nice) are appreciated.

As far as I know, Blowfish is the best encryption algorithm for this purpose
at this time, which (to my knowledge) is why OpenBSD uses it by default.

I don't believe it's the fastest, however, but I could be wrong there.

-- 
Bill Moran
Potential Technologies
http://www.potentialtech.com