> Gary Winiger writes:
> > Hummm, does the installer now use PAM here? I don't recall.
> > It used to use a private implementation of "unix" crypt. I
> > believe it now at least uses crypt(3C). In terms of password
> > strength, it might be nice to have the installer ask about parameters
> > as well as algorithm, then sites could choose and not have to
> > configure post CD install. For jumpstart, it probably doesn't
> > matter.
>
> No more baffling three-headed-dog install questions, please. If we've
> got a best practice for algorithms (sha256?), then make that the
> default, and require the use of some sort of "expert mode" to allow
> bit-fiddling.
Where was my head last night. Not thinking clearly. Clearly
something better than "Unix" crypt should be the default. Jumpstart
can do that if the site chooses.
Gary..
