[arch-general] Upgrading password hashes
Don Juan
donjuansjiz at gmail.com
Sat Jan 21 11:06:04 EST 2012
On 01/21/2012 07:34 AM, Mantas M. wrote:
> On Fri, Jan 20, 2012 at 11:04:12PM +0000, Kevin Chadwick wrote:
>> Maybe I missed giving a piece of info. The default password is DES which
>> is really crap and starts with $1 so simply enabling blowfish
> DES is indeed crap, but it hasn't been the default for a long time.
> The $1$ hashes are salted MD5, as crypt(3) can confirm.
>
Then if the default is that then why are default system users, such as
http mail postfix and similar not displaying the $1$ on the shadow file?
Also according to the wiki it says des is the default and to upgrade the
hashes out of the default. Am I not understanding it correctly in the
wiki, and the users that I am talking about the hashes do not matter?
Sorry feel confused at the moment.
More information about the arch-general
mailing list