Date: Fri, 08 Jun 2012 16:48:43 +0200 From: "Hartmann, O." <ohartman@zedat.fu-berlin.de> To: freebsd-security@freebsd.org Subject: Re: Default password hash Message-ID: <4FD210CB.6030000@zedat.fu-berlin.de> In-Reply-To: <CAJcQMWdMp-ATdTzq6CNcy6dAUzZ98w2snT=u_cM=qLvQznAn_w@mail.gmail.com> References: <86r4tqotjo.fsf@ds4.des.no> <CAJcQMWdMp-ATdTzq6CNcy6dAUzZ98w2snT=u_cM=qLvQznAn_w@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 06/08/12 15:06, Maxim Khitrov wrote: > On Fri, Jun 8, 2012 at 8:51 AM, Dag-Erling Smørgrav <des@des.no> wrote: >> We still have MD5 as our default password hash, even though known-hash >> attacks against MD5 are relatively easy these days. We've supported >> SHA256 and SHA512 for many years now, so how about making SHA512 the >> default instead of MD5, like on most Linux distributions? > > If SHA-2 hashes have been supported for many years, why haven't the > man pages been updated? login.conf(5) on 9.0-RELEASE still only lists > "des", "md5", and "blf". I've been using the latter on my systems. > > - Max > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" I asked similar things once: http://lists.freebsd.org/pipermail/freebsd-security/2009-January/005072.html I use "blf" since then. I hear the first time FreeBSD is supporting SHA256 and SHA512. Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4FD210CB.6030000>