[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [PATCH] live-initramfs: Assign user password from boot paremeter

Steven Shiau wrote:

Marco Amadori wrote:
On Wednesday 03 June 2009, 16:19:14, Julien Cristau wrote:

On Wed, Jun  3, 2009 at 08:53:21 +0200, Marco Amadori wrote:
Since what it's proposed expose the password in crypted way, it seems
a better approach of what we got since today.
I think it's worse, because it gives a false sense of security.

I meant giving the hash and not the clear password on command line (hence on /proc/cmdline). The hash could be md5 is not really cheap security, although md5 got a bit deprecated.
Actually if you prefer sha-256 instead of md5, you can generate the password like:
echo YOURPASSWD | mkpasswd -m sha-256 -s
Or sha-512:
echo YOURPASSWD | mkpasswd -m sha-256 -s
Oops... I meant for sha-512:
echo YOURPASSWD | mkpasswd -m sha-512 -s


Steven Shiau <steven _at_ nchc org tw> <steven _at_ stevenshiau org>
National Center for High-performance Computing, Taiwan.
Public Key Server PGP Key ID: 1024D/9762755A
Fingerprint: A2A1 08B7 C22C 3D06 34DB  F4BC 08B3 E3D7 9762 755A

Reply to: