On 2012-06-09 09:43, O. Hartmann wrote: > On 06/08/12 14:51, Dag-Erling Smørgrav wrote: >> We still have MD5 as our default password hash, even though known-hash >> attacks against MD5 are relatively easy these days. We've supported >> SHA256 and SHA512 for many years now, so how about making SHA512 the >> default instead of MD5, like on most Linux distributions? ... > The manpage for login.conf also needs an update. I checked this morning > and found that thye manpage doesn't even mention hashes apart from des, > md5 and blf.
Dag-Erling fixed this just yesterday :) http://svn.freebsd.org/changeset/base/236751 _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
