From owner-freebsd-security  Mon May  3 17:42:30 1999
Delivered-To: freebsd-security@freebsd.org
Received: from shell.futuresouth.com (shell.futuresouth.com [198.78.58.28])
	by hub.freebsd.org (Postfix) with ESMTP id 08A15156D2
	for <freebsd-security@FreeBSD.ORG>; Mon,  3 May 1999 17:42:26 -0700 (PDT)
	(envelope-from fullermd@futuresouth.com)
Received: (from fullermd@localhost)
	by shell.futuresouth.com (8.9.3/8.9.3) id TAA06521;
	Mon, 3 May 1999 19:38:37 -0500 (CDT)
Date: Mon, 3 May 1999 19:38:37 -0500
From: "Matthew D. Fuller" <fullermd@netalpha.net>
To: "Jordan K. Hubbard" <jkh@zippy.cdrom.com>
Cc: "Jeroen C. van Gelderen" <jeroen@vangelderen.org>,
	Robert Watson <robert+freebsd@cyrus.watson.org>,
	Poul-Henning Kamp <phk@critter.freebsd.dk>,
	The Tech-Admin Dude <geniusj@phoenix.unacom.com>,
	Brian Beaulieu <brian@capital-data.com>, freebsd-security@FreeBSD.ORG
Subject: Re: Blowfish/Twofish
Message-ID: <19990503193836.D1229@netalpha.net>
References: <372C19F5.625BB2B@vangelderen.org> <23332.925637575@zippy.cdrom.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.95.3i
In-Reply-To: <23332.925637575@zippy.cdrom.com>; from Jordan K. Hubbard on Sun, May 02, 1999 at 02:32:55AM -0700
X-OS: FreeBSD <http://www.freebsd.org>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Sun, May 02, 1999 at 02:32:55AM -0700, a little birdie told me
that Jordan K. Hubbard remarked
> 
> Erm, one of the goals of PAM is to support *multiple* encryption
> methods, so why not do a PAM module for each and let the administrator
> decide which authentication methods to support in /etc/pam.conf?

So how far are we from being able to say 'Accept DES, prefer MD5, and
always use MD5 for new passwords' with PAM?  What pieces are we missing?



-- 

*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
| Matthew Fuller    MF4839    http://www.over-yonder.net/ |
* fullermd@futuresouth.com       fullermd@over-yonder.net *
| UNIX Systems Administrator      Specializing in FreeBSD |
*   FutureSouth Communications   ISPHelp ISP Consulting   *
|  "The only reason I'm burning my candle at both ends,   |
*    is because I haven't figured out how to light the    *
|                     middle yet"                         |
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message