From owner-freebsd-questions@FreeBSD.ORG Sun Jun 24 22:51:44 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DFF93106564A for ; Sun, 24 Jun 2012 22:51:44 +0000 (UTC) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from asbnvacz-mailrelay01.megapath.net (asbnvacz-mailrelay01.megapath.net [207.145.128.243]) by mx1.freebsd.org (Postfix) with ESMTP id AE0028FC1D for ; Sun, 24 Jun 2012 22:51:44 +0000 (UTC) Received: from mail6.sea5.speakeasy.net (mail6.sea5.speakeasy.net [69.17.117.50]) by asbnvacz-mailrelay01.megapath.net (Postfix) with ESMTP id 4374EA70905 for ; Sun, 24 Jun 2012 18:28:40 -0400 (EDT) Received: (qmail 3862 invoked from network); 24 Jun 2012 22:28:39 -0000 Received: by simscan 1.4.0 ppid: 21473, pid: 19779, t: 0.1522s scanners: clamav: 0.88.2/m:52/d:10739 Received: from unknown (HELO be-well.ilk.org) ([66.92.78.145]) (envelope-sender ) by mail6.sea5.speakeasy.net (qmail-ldap-1.03) with SMTP for ; 24 Jun 2012 22:28:39 -0000 Received: by be-well.ilk.org (Postfix, from userid 1147) id CF2CF33C20; Sun, 24 Jun 2012 18:28:38 -0400 (EDT) From: Lowell Gilbert To: "Christopher J. Ruwe" References: <20120623153710.36e7446f@dijkstra.cruwe.de> Date: Sun, 24 Jun 2012 18:28:38 -0400 In-Reply-To: <20120623153710.36e7446f@dijkstra.cruwe.de> (Christopher J. Ruwe's message of "Sat, 23 Jun 2012 15:37:10 +0200") Message-ID: <444nq0mjjd.fsf@be-well.ilk.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: freebsd-questions@freebsd.org Subject: Re: changing md5 hashed for sha X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: freebsd-questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jun 2012 22:51:45 -0000 "Christopher J. Ruwe" writes: > For setting the dafault hash used to hash /etc/master.passwd, it has > been recommended changing md5 for something more secure in the sense of > being more expensive to crack. > > The handbook describes the procedure used in > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/crypt.html. > Allegedly, hashes which were hashed with one of the sha-functions begin > with the character $6$. > > Afer having changed my /etc/login.conf accordingly and having reset the > passwords, the given there is not md5 anymore (I have tried with md5), > but does not begin with the character $6$, but, as md5, with $1$, which > is supposed to be md5-hashed. I'm not following. Are you saying that you are resetting the passwords after setting login.conf, but new passwords aren't being created with the new hash type?