Re: PHK's MD5 might not be slow enough anymore
At 2:13 PM -0800 1/28/10, Chuck Swiger wrote:
>Hi--
>
>On Jan 28, 2010, at 1:56 PM, Garance A Drosihn wrote:
> >
>> Might want to make it something like $1.nnn.bbb$, so the admin can specify
>> the number of bits as well as the number of rounds. And then pick some
>> algorithm where those two values make sense. :-)
>
>As Antoine points out in the link mentioned:
>
>> The integration into existing systems is easy if those systems already
>> support the MD5-based solution. Ever since the introduction of the
>> MD5-based method an extended password format is in used:
>>
> > $<ID>$<SALT>$<PWD>
>This seems to address the suggestion being made by Chris (and +1'ed
>by others) in a fashion that is compatible with other
>implementations....
Ah, yes, this seems like a fine idea. (so please ignore the message I
sent about 45 seconds ago!)
--
Garance Alistair Drosehn = gad@gilead.netel.rpi.edu
Senior Systems Programmer or gad@freebsd.org
Rensselaer Polytechnic Institute or drosih@rpi.edu
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 17 之 35 篇):