PHK's MD5 might not be slow enough anymore

Dag-Erling Smørgrav des at
Mon Feb 1 13:28:33 UTC 2010

Matthew Dillon <dillon at> writes:
>     Just give up and turn off tunneled plaintext passwords over the
>     network.  No (non-kerberos) telnetd, rlogind, (non anonymous) ftpd, etc.
>     Just run sshd and put this in your sshd_config:
> 	# To disable tunneled clear text passwords, change to no here!
> 	PasswordAuthentication no

This does not do what you think it does.  RTFM.

Dag-Erling Smørgrav - des at

More information about the freebsd-security mailing list