Steven Shiau wrote:
Marco Amadori wrote:Actually if you prefer sha-256 instead of md5, you can generate the password like:On Wednesday 03 June 2009, 16:19:14, Julien Cristau wrote:On Wed, Jun 3, 2009 at 08:53:21 +0200, Marco Amadori wrote:Since what it's proposed expose the password in crypted way, it seems a better approach of what we got since today.I think it's worse, because it gives a false sense of security.I meant giving the hash and not the clear password on command line (hence on /proc/cmdline). The hash could be md5 is not really cheap security, although md5 got a bit deprecated.echo YOURPASSWD | mkpasswd -m sha-256 -s Or sha-512: echo YOURPASSWD | mkpasswd -m sha-256 -s
Oops... I meant for sha-512: echo YOURPASSWD | mkpasswd -m sha-512 -s
Steven.
-- Steven Shiau <steven _at_ nchc org tw> <steven _at_ stevenshiau org> National Center for High-performance Computing, Taiwan. http://www.nchc.org.tw Public Key Server PGP Key ID: 1024D/9762755A Fingerprint: A2A1 08B7 C22C 3D06 34DB F4BC 08B3 E3D7 9762 755A