Date: Sun, 12 Nov 1995 22:34:37 +0100 (MET) From: J Wunsch <j@uriah.heep.sax.de> To: mark@grondar.za (Mark Murray) Cc: joerg_wunsch@uriah.heep.sax.de, current@freebsd.org Subject: Re: Dual-personality crypt(3)!! Message-ID: <199511122134.WAA22212@uriah.heep.sax.de> In-Reply-To: <199511121659.SAA03128@grumble.grondar.za> from "Mark Murray" at Nov 12, 95 06:59:43 pm
next in thread | previous in thread | raw e-mail | index | archive | help
As Mark Murray wrote: > > > Anyway, i like it. This would allow me to upgrade to MD5 some day > > without losing all my DES passwords. ;-) > > Not without a bit of extra work. The default encryption when no salt is > specified will be DES. This was designed as a convenience for those > who have MD5 and want to go DES without irritating all their users. > as folks change their passwords, they will be DES'ed. Well, i could UTSL. Anyway, wouldn't it be possible to add a knob (e.g. an environmental variable) that would allow to select the default behaviour, defaulting to DES? This way, we could satisfy both camps: people who want to `downgrade' to DES for the one or the other reason, or people who've been running with DES, but wish to use MD5 instead, e.g. since it's known to be stronger. This would allow for a gradual migration in both directions. -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199511122134.WAA22212>