For JDK7, you likely want to review: https://docs.oracle.com/javase/7/docs/technotes/guides/security/StandardNames.html#MessageDigest
JDK8: https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#MessageDigest From: Patrick Coleman [mailto:patcole...@me.com] Sent: Monday, November 2, 2015 4:59 PM To: cas-user@lists.jasig.org Subject: [cas-user] org.jasig.cas.authentication.handler.DefaultPasswordEncoder Hi, Can someone tell me which encoders DefaultPasswordEncoder can handle? >From this page on "Class DefaultPasswordEncoder" https://developer.jasig.org/projects/cas/cas-server-core/cas-server/cas-server-core/apidocs/org/jasig/cas/authentication/handler/DefaultPasswordEncoder.html It says it can handle "any message digest that the JDK can accept, including MD5 and SHA1”. Does it handle SHA256? Where can I get info on this. From what I’ve read MD5 and SHA1 are not considered secure. Thanks for any help Pat. Patrick Coleman patcole...@me.com <mailto:patcole...@me.com> 301-651-9573 -- You are currently subscribed to cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> as: mmoay...@unicon.net <mailto:mmoay...@unicon.net> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
