[prev in list] [next in list] [prev in thread] [next in thread]
List: freebsd-security
Subject: Re: Default password encryption method.
From: Mike Tancsa <mike () sentex ! net>
Date: 2012-08-21 14:31:54
Message-ID: 50339BDA.7080002 () sentex ! net
[Download RAW message or body]
On 6/19/2012 10:10 AM, ian ivy wrote:
> By default FreeBSD uses MD5 to encrypt passwords. MD5 is believed to be
> more secure than e.g. DES but less than e.g. SHA512. Currently several
> major Linux distributions, uses a SHA512 mechanism. Suse Linux also offers
> a blowfish.
A late followup to this thread, but there was a decent fleshed out
article on this issue
http://arstechnica.com/security/2012/08/passwords-under-assault/
There are a few caveats/clarifications in the comments, but pretty good
overall for a non hardcore crypto audience.
---Mike
--
-------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike@sentex.net
Providing Internet services since 1994 www.sentex.net
Cambridge, Ontario Canada http://www.tancsa.com/
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic