Re: MD5_CRYPT_ENAB in login.defs

To: Debian Development Mailing List <debian-devel@lists.debian.org>
Subject: Re: MD5_CRYPT_ENAB in login.defs
From: Piotr Roszatycki <dexter@fnet.pl>
Date: Tue, 27 Jul 1999 16:19:18 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.10.9907271614200.4533-100000@cyan.fnet.pl>
In-reply-to: <[🔎] 19990727080314.G852@justice.loyola.edu>

On Tue, 27 Jul 1999, Michael Stone wrote:

> On Tue, Jul 27, 1999 at 02:21:21PM +0200, Piotr Roszatycki wrote:
> > Why md5 algorithm isn't default for passwd?
> > I think it is more secure and hasn't 8 length limit.
> > 
> > MD5_CRYPT_ENAB in login.defs is disabled.
> > I don't understand, why?
> 
> It's incompatable with legacy systems.

But is it really important? I think security is much important and
less security method should be only optional.

Maybe at install time user could choose crypting method?
For now it is possible to choose shadow or non-shadow system.

-- 

Piotr "Dexter" Roszatycki
mailto:dexter@fnet.pl

Reply to:

Follow-Ups:
- Re: MD5_CRYPT_ENAB in login.defs
  - From: Michael Stone <mstone@debian.org>

References:
- Re: MD5_CRYPT_ENAB in login.defs
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: Sponsorship: news and questions about the maintainer field
Next by Date: Re: Why is libgtk1.2-1.2.3-1 bloating dynamically linked binaries (was: Why is libc-2.1.*.so not stripped?)
Previous by thread: Re: MD5_CRYPT_ENAB in login.defs
Next by thread: Re: MD5_CRYPT_ENAB in login.defs
Index(es):
- Date
- Thread