On Tue, Jul 19, 2016 at 12:13:28PM -0400, John Cowan wrote: > Christian Kellermann scripsit: > > > Maybe it makes sense to split out the sensitive information from the > > user-information for all Operating systems and thinking of another set > > of procedures that will produce the credentials. These can then use OS > > specific functions to get at the information. > > I'd say, set the passwd field to '*' (which is not the encryption of anything > on any known password scheme) on all systems. *Nobody* should be depending > directly on the value of the encrypted password in 2016.
Yeah, but what if you're writing, say, a login manager or ssh replacement in Scheme? Then you need to be able to crypt & compare the password and preferably use a portable API to get the crypted password. Cheers, Peter
signature.asc
Description: Digital signature
_______________________________________________ Chicken-hackers mailing list Chicken-hackers@nongnu.org https://lists.nongnu.org/mailman/listinfo/chicken-hackers