[Bug 2037742] Re: missing yescrypt security hardening feature
Dan Bungert
2037742 at bugs.launchpad.net
Tue Oct 3 02:14:05 UTC 2023
If looking up the default is sufficiently ugly I propose we just
hardcode it to yescrypt and check in CI that `useradd ; passwd` or
whatever actually uses the algorithm we expect. We won't be happy the
day the CI check fails but at least we'll know promptly.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/2037742
Title:
missing yescrypt security hardening feature
Status in subiquity:
New
Bug description:
Johan Hortling reported a missing security hardening feature in Ubuntu
Server.
The subiquity installer for Ubuntu Server uses sha-512 instead of
yescrypt to hash the users password. After installation, passwd uses
yescrypt.
To manage notifications about this bug go to:
https://bugs.launchpad.net/subiquity/+bug/2037742/+subscriptions
More information about the foundations-bugs
mailing list