Kevin White wrote: > The sed command in the instructions for shadow (in both the 6.6 and SVN) > sets the password encryption to MD5. > > Just by modifying that sed, I changed it to SHA512, which is just one of > the options that should be more secure than MD5. Everything just worked > once I made that change. > > Would changing shadow to use something more secure than MD5 be something > that the developers might want to put into the book?
I'm not sure I want to change it to SHA512 in the actual instruction, but we might mention in the text that SHA256 and SHA256 are other options. We probably need to also mention: # Note: If you use PAM, it is recommended to use a value consistent with # the PAM modules configuration. Other opinions? -- Bruce -- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
