From owner-freebsd-security@FreeBSD.ORG  Thu Jan 28 20:56:38 2010
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id F02931065676
	for <freebsd-security@freebsd.org>;
	Thu, 28 Jan 2010 20:56:38 +0000 (UTC)
	(envelope-from antoine.brodin.freebsd@gmail.com)
Received: from mail-bw0-f213.google.com (mail-bw0-f213.google.com
	[209.85.218.213])
	by mx1.freebsd.org (Postfix) with ESMTP id 801BC8FC08
	for <freebsd-security@freebsd.org>;
	Thu, 28 Jan 2010 20:56:38 +0000 (UTC)
Received: by bwz5 with SMTP id 5so950969bwz.3
	for <freebsd-security@freebsd.org>;
	Thu, 28 Jan 2010 12:56:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:sender:received:in-reply-to
	:references:date:x-google-sender-auth:message-id:subject:from:to:cc
	:content-type; bh=XWYkIfheAanOk8f+rxN4he2n5ztV6bzN8yfVPSxJ4PI=;
	b=mzPg5+78CDkypFoGRqbDIXvckAfzJrkgppAi5v8h1RsKOVIuJgM9Mkz8A3MuYMUsnS
	BWAizzseOkZ0/kL0KGy0fejRifv/4vDyoi4BiD+ueb0uB2Rb0A8DvhDYrgj3otFl7YDW
	/TLljol74/3sMxlrlixVL6EY0IYVyK1Ta+fs8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:sender:in-reply-to:references:date
	:x-google-sender-auth:message-id:subject:from:to:cc:content-type;
	b=nqLYv23n5OPOZ6j8+MEr6No+GEmC35LGqXgAQApvgzmJwiwiikV6aflyIwD9bfhnsn
	V3VCJN63IE3lvdW/6eF0rs1LQily9ImyIKeIh8DUOKmgaXDM1mH1VGezTdc7eOzP5nDk
	WGqKuuWP4e3wTducmMifenLWWGLIy93DHo1b4=
MIME-Version: 1.0
Sender: antoine.brodin.freebsd@gmail.com
Received: by 10.239.190.15 with SMTP id v15mr60207hbh.51.1264710599492; Thu, 
	28 Jan 2010 12:29:59 -0800 (PST)
In-Reply-To: <20100128201857.GP892@noncombatant.org>
References: <20100128182413.GI892@noncombatant.org>
	<20100128135410.7b6fe154.wmoran@collaborativefusion.com>
	<20100128193941.GK892@noncombatant.org>
	<20100128151026.5738b6c1.wmoran@collaborativefusion.com>
	<20100128201857.GP892@noncombatant.org>
Date: Thu, 28 Jan 2010 21:29:59 +0100
X-Google-Sender-Auth: bf565ed967a8b5f1
Message-ID: <f19c444a1001281229yc17a897qf55fe64aa4711410@mail.gmail.com>
From: Antoine Brodin <antoine@FreeBSD.org>
To: Chris Palmer <chris@noncombatant.org>
Content-Type: text/plain; charset=ISO-8859-1
Cc: freebsd-security@freebsd.org
Subject: Re: PHK's MD5 might not be slow enough anymore
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jan 2010 20:56:39 -0000

On Thu, Jan 28, 2010 at 9:18 PM, Chris Palmer <chris@noncombatant.org> wrote:
> For backwards compatibility, which do people prefer: Creating a new $N$
> prefix every time we re-tune the algorithm, or using a new notation to say
> how many times this password was hashed? For example: $1.1000$, $1.100000$,
> et c.?

You may want to have a look at
http://people.redhat.com/drepper/SHA-crypt.txt and freebsd PR 124164.

Cheers,

Antoine