Bugtraq mailing list archives

Re: passwd hashing algorithm

From: maquis () netcom com (maquis)
Date: Fri, 14 Apr 1995 07:18:49 -0700 (PDT)


On 13 Apr 1995, Louis Taber wrote:

* David Faron Stagner (stagda () sys1 ic ncs com) writes

I'm with der Mouse on this... the current state of crypt() and
password hashing in unix is inexcusable.

..... stuff removed


Agreed. Personally, I am wondering when Unix will get overhauled so that 
these recurring holes (sendmail, crypt<>, etc) will be brought to a 
higher level of perfection. Regarding crypt() I would think a one-way 
mechanism is the answer, versus having keys that are left around the system.

rf

Current thread:

Re: passwd hashing algorithm don () paranoia com (Apr 13)
- Re: passwd hashing algorithm Perry E. Metzger (Apr 13)
- Re: passwd hashing algorithm Jon Peatfield (Apr 15)
  - Re: passwd hashing algorithm Timothy Newsham (Apr 17)
- <Possible follow-ups>
- Re: passwd hashing algorithm Louis Taber (Apr 13)
  - Re: passwd hashing algorithm maquis (Apr 14)
    - Re: passwd hashing algorithm John F. Haugh II (Apr 16)
  - Re: passwd hashing algorithm Charles Howes (Apr 14)
- Re: passwd hashing algorithm der Mouse (Apr 14)
- Re: passwd hashing algorithm smb () research att com (Apr 14)
- Re: passwd hashing algorithm Dennis Glatting (Apr 15)
- Re: passwd hashing algorithm smb () research att com (Apr 16)
  - Re: passwd hashing algorithm David A. Wagner (Apr 17)
    - Re: passwd hashing algorithm John F. Haugh II (Apr 18)
    - Re: passwd hashing algorithm David A. Wagner (Apr 18)
    - Re: passwd hashing algorithm Charlie Watt (Apr 19)

(Thread continues...)