why still using md5 in shadow file?

Mark Syms mark at marksyms.me.uk
Mon Apr 5 20:03:51 UTC 2010


> Message: 4
> Date: Mon, 05 Apr 2010 17:30:18 +0200
> From: Jozsi Vadkan <jozsi.avadkan at gmail.com>
> Subject: why still using md5 in shadow file?
> To: Ubuntu Mailing list <ubuntu-users at lists.ubuntu.com>
> Message-ID: <1270481418.9126.18.camel at localhost>
> Content-Type: text/plain
> 
> FIXME if i'm wrong, but why are the passwords stored in md5?
> 
> Isn't there a better/more secure solution to store the local users
> passwords?
> 
> Thank you for the answer/tips.

It isn't. Current distos use sha512. See the contents of
/etc/pam.d/common-password

Mark.




More information about the ubuntu-users mailing list