[arch-general] Upgrading password hashes
Don Juan
donjuansjiz at gmail.com
Fri Jan 20 18:14:34 EST 2012
On 01/20/2012 03:04 PM, Kevin Chadwick wrote:
> On Fri, 20 Jan 2012 14:17:22 -0800
> Don Juan wrote:
>
>> Not sure if I am getting what you mean here but to me sounds like you
>> did not complete what is in the wiki in regards to running blowfish,
>> since you need AUR package and what not and it says there is more to do
>> than change a single file to make blowfish the algo.
> I know I didn't. Blowfish is stronger but I'm settled with sha512
> rather than building a library and fixing any possible fallout in the
> future.
>
> Maybe I missed giving a piece of info. The default password is DES which
> is really crap and starts with $1 so simply enabling blowfish
> in /etc/default/passwd has enabled SHA512, you'd expect to uncomment
> SHA512 not blowfish. It seems for sha512 you don't have to do as much as
> the wiki suggests anymore.
Ahhh OK that makes more sense, at least to me. I just went through doing
everything in the wiki myself for the same reason I did not want to add
another AUR package just to get the feature/ability. I agree though that
DES should be changed at this point.
More information about the arch-general
mailing list