From owner-freebsd-questions  Wed Aug 13 23:02:42 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id XAA26361
          for questions-outgoing; Wed, 13 Aug 1997 23:02:42 -0700 (PDT)
Received: from gdi.uoregon.edu (cisco-ts10-line3.uoregon.edu [128.223.150.101])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA26356
          for <questions@FreeBSD.ORG>; Wed, 13 Aug 1997 23:02:39 -0700 (PDT)
Received: from localhost (dwhite@localhost)
          by gdi.uoregon.edu (8.8.5/8.8.5) with SMTP id XAA02083;
          Wed, 13 Aug 1997 23:02:23 -0700 (PDT)
Date: Wed, 13 Aug 1997 23:02:23 -0700 (PDT)
From: Doug White <dwhite@gdi.uoregon.edu>
X-Sender: dwhite@localhost
Reply-To: Doug White <dwhite@resnet.uoregon.edu>
To: "Jonathan A. Zdziarski" <jonz@netrail.net>
cc: questions@FreeBSD.ORG
Subject: Re: Encryption Upgrade
In-Reply-To: <Pine.BSF.3.95q.970813150207.28337B-100000@netrail.net>
Message-ID: <Pine.BSF.3.96.970813230042.2059C-100000@localhost>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

On Wed, 13 Aug 1997, Jonathan A. Zdziarski wrote:

> After looking at the libraries, I see that I'm moving from des to md5 -
> from libdescrypt to libscrypt's.

Yuck.  This sucks.  I recommend avoiding this if you can; all of your
passwords will cease to function unless you can figure out a way to
convert them to MD5 before you pull the swap.  I realize that md5 is
probably more secure, but md5->des is really a one-way street.  

Usually you need DES if you are doing any inter-system authentication, ie
rsh.  I understand tho if you're moving out of the US or some other
similiar restriction.  

Doug White                              | University of Oregon  
Internet:  dwhite@resnet.uoregon.edu    | Residence Networking Assistant
http://gladstone.uoregon.edu/~dwhite    | Computer Science Major
Spam routed to /dev/null by Procmail    | Death to Cyberpromo