Home page logo

bugtraq logo Bugtraq mailing list archives

Re: passwd hashing algorithm
From: maquis () netcom com (maquis)
Date: Fri, 14 Apr 1995 07:18:49 -0700 (PDT)

On 13 Apr 1995, Louis Taber wrote:

* David Faron Stagner (stagda () sys1 ic ncs com) writes

I'm with der Mouse on this... the current state of crypt() and
password hashing in unix is inexcusable.  
..... stuff removed

Agreed. Personally, I am wondering when Unix will get overhauled so that 
these recurring holes (sendmail, crypt<>, etc) will be brought to a 
higher level of perfection. Regarding crypt() I would think a one-way 
mechanism is the answer, versus having keys that are left around the system.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]