[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Revisiting the SHA1 default password hash

To: Howard Chu <hyc@symas.com>, Quanah Gibson-Mount <quanah@symas.com>, openldap-devel@openldap.org
Subject: Re: Revisiting the SHA1 default password hash
From: Andrew Bartlett <abartlet@samba.org>
Date: Sat, 25 Feb 2017 16:31:08 +1300
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=samba.org; s=42627210; h=Date:To:From:Message-ID:CC; bh=cZcj/GM6AO7DY3IrU8pyWnQQSEIKIOUyKb1varWMJi8=; b=HK5Uds2fFw5xQccdZrmrjMnKlv /JhQShngdqASpdMBxutP2HwplVmP9G97vo0c2GLMpM796L0SRQrGmkT/8x7Rut+zHQSMCQB9Mt58F HfDHQpT4/jxpouSgXW8XTpZXs6WqHihUYfZpizmCXNlHQQ6oDEoEjKlyRB+Vtd6KMmN8=;
In-reply-to: <68af7039-249b-497c-8b7f-1c4f5c372dd8@symas.com>
References: <B4A6086DCB7954D816BB8528@[192.168.1.30]> <2ec6af76-ca87-5694-e0ed-3e8e572c5f4a@stroeder.com> <WM!68af734acd6f844fa34c87273fb1ed9f4e6f09b89b52853f29e034d6c6362863e9c83ac420defb43eeab71fe573b25c5!@mailstronghold-3.zmailcloud.com> <ed9deb4d-d0dd-3753-b9bb-f26e93416ca1@symas.com> <WM!44c3fc316d52ca6a2b7efbf8459ab01bde505ca8f7eb591170380646a1cdd6b408c5bc863aa9be41945e412f2d648f74!@mailstronghold-1.zmailcloud.com> <BE8C61AE98C00B38B7A980A1@[192.168.1.30]> <68af7039-249b-497c-8b7f-1c4f5c372dd8@symas.com>

On Sat, 2017-02-25 at 02:17 +0000, Howard Chu wrote:
> Quanah Gibson-Mount wrote:
> > --On Friday, February 24, 2017 8:32 PM +0000 Howard Chu <hyc@symas.
> > com> wrote:
> > 
> > > > Yes, but there should be something stronger.
> > > > 
> > > > How about moving ./contrib/slapd-modules/passwd/pbkdf2 to core?
> > > 
> > > Yeah at this point we can probably bypass SHA2 and just go
> > > straight to
> > > SHA3. There's a lot of crypto software out there already using
> > > it. pbkdf2
> > > is still using SHA2.
> > 
> > Worthwhile to read over:
> > <https://paragonie.com/blog/2016/02/how-safely-store-password-in-20
> > 16>
> 
> Hm, where did these recommendations come from? They include Scrypt
> among their 
> recommendations, but there are Scrypt ASICs all over the web already
> making it 
> trivially hackable.
> 
> e.g. http://zoomhash.com/  ;(just google "scrypt asic" ...)
> 
> > 
> > libsodium's a pretty trivial compile, I added it to Zimbra a while
> > back for
> > another project.

When I asked notable Kiwi security researcher Peter Gutmann on the
sidelines of Kiwicon about what to use if I ever imagined a Samba un-
shackled from the restrictions of Windows compatibility (the printed
conference program poked fun at AD for MD4), he strongly recommended
Argon2 as mentioned in the link above.

Either way, I'll follow this thread with interest, as I'm keen to have
a password hash in Samba that is both best-of-breed and shared between
modern OpenLDAP and Samba, for our administrators who need password
sync. 

Andrew Bartlett
-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

References:
- Revisiting the SHA1 default password hash
  - From: Quanah Gibson-Mount <quanah@symas.com>
- Re: Revisiting the SHA1 default password hash
  - From: Michael Ströder <michael@stroeder.com>
- Re: Revisiting the SHA1 default password hash
  - From: Howard Chu <hyc@symas.com>
- Re: Revisiting the SHA1 default password hash
  - From: Quanah Gibson-Mount <quanah@symas.com>
- Re: Revisiting the SHA1 default password hash
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Revisiting the SHA1 default password hash
Index(es):
- Chronological
- Thread