password hash weaknesses in FreeBSD ?
Thomas D. Dean
tomdean at speakeasy.org
Tue Aug 2 17:24:48 UTC 2011
On Tue, 2011-08-02 at 17:36 +0100, マンロークリストファ wrote:
> The crypt program to hash passwords uses md5 /DES/blowfish for
> password hashing as I have read in the handbook. DES and md5 are
> widely regarded to be broken (certainly DES). I would prefer password
> hashing to be done using salted SHA1 / SHA256 to meet my security
> needs. Is this configuration possible?
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
http://www.bsdguides.org/guides/freebsd/security/harden.php
google "freebsd password hash sha256"
http://www.google.com/search?hl=en&q=freebsd+password+hash
+sha256&aq=f&aqi=&aql=&oq=
Has patches toward adding this.
tomdean
More information about the freebsd-questions
mailing list