Date: Mon, 11 Jun 2012 10:48:09 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Mike Tancsa <mike@sentex.net> Cc: freebsd-security@freebsd.org Subject: Re: Default password hash Message-ID: <86ipeyp73q.fsf@ds4.des.no> In-Reply-To: <4FD334BE.4020900@sentex.net> (Mike Tancsa's message of "Sat, 09 Jun 2012 07:34:22 -0400") References: <86r4tqotjo.fsf@ds4.des.no> <4FD334BE.4020900@sentex.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Mike Tancsa <mike@sentex.net> writes: > Actually, any chance of MFC'ing SHA256 and 512 in RELENG_7 ? Its > currently not there. "not there" as in "not supported by crypt(3)"? > http://phk.freebsd.dk/sagas/md5crypt_eol.html That blog entry is (partly) why I suggested this change. I think phk is being overly pessimistic, but there is no reason not to switch to sha512 when a) it's indubitably stronger and b) that's what the rest of the world uses. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86ipeyp73q.fsf>