Date: Wed, 22 Oct 2014 21:08:31 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Mason Loring Bliss <mason@blisses.org> Cc: freebsd-security@freebsd.org Subject: Re: DES? Message-ID: <8638afdis0.fsf@nine.des.no> In-Reply-To: <20141022135801.GI2581@blisses.org> (Mason Loring Bliss's message of "Wed, 22 Oct 2014 09:58:01 -0400") References: <20141022135801.GI2581@blisses.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Mason Loring Bliss <mason@blisses.org> writes: > Can someone explain what this will impact in normal use? Does this > mean that passwords will default to DES? No, the default setting for user passwords is in login.conf and is still SHA-512. The hardcoded default only applies to programs that use crypt(3) for other purposes and do not call crypt_set_format(3) first. See https://bugs.freebsd.org/192277 for details and examples of affected applications. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8638afdis0.fsf>