James Carlson wrote: > Gary Winiger writes: > >> Hummm, does the installer now use PAM here? I don't recall. >> It used to use a private implementation of "unix" crypt. I >> believe it now at least uses crypt(3C). In terms of password >> strength, it might be nice to have the installer ask about parameters >> as well as algorithm, then sites could choose and not have to >> configure post CD install. For jumpstart, it probably doesn't >> matter. > > > No more baffling three-headed-dog install questions, please. If we've > got a best practice for algorithms (sha256?), then make that the > default, and require the use of some sort of "expert mode" to allow > bit-fiddling.
Amen! Yes, we need to have sane defaults and require people to _ask_ for the minutae if they really want it. -- Eric J. Ray Software Engineering Manager Solaris Install, OPG Sun Microsystems 303-223-7843 (direct)/x81067 eric.ray at sun.com
