[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Openldap password problems

Quanah Gibson-Mount wrote:
Setting the default to {CRYPT} is a security nightmare,

Such a general statement is non-sense without taking a closer look at which crypt scheme is really used.

Consult your local crypt(3) man page to see whether crypt schemes like "$6$" or "$2b$" are supported on your system which are definitely stronger than simple {SSHA}. Then use password-crypt-salt-format to make use of such a crypt scheme.

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature