Re: So we're in agreement....

On Sun, 7 May 2000, The Hermit Hacker wrote:

> 
> So, we're going to go with less security then is available on most Unix
> OSs?  

Whoever said MD5 is less secure than standard DES has handed you a line
so long....  

If you want the entire story, go back and reread the thread.  If you want
it in a nutshell, MD5 isn't reversable so it's not considered encryption
as defined in the US Govt's eyes.  DES has been broken more than once.  I
don't know what you're using on hub, but MD5 is the default in FreeBSD
unless you actually choose DES.  Also the FreeBSD folks feel that MD5 is
the better choice.

> if we are going to do this, *please* just use the regular system
> crypt() function ... for those that are using MD5 for their passwords, at
> least as it is under FreeBSD, crypt() does either MD5 or DES depending on
> the system ...

crypt() requires libcrypt which isn't available on all platforms.  I 
think we all feel we can do better.

Vince.
-- 
==========================================================================
Vince Vielhaber -- KA8CSH    email: vev@michvhf.com    http://www.pop4.net128K ISDN from $22.00/mo - 56K Dialup from
$16.00/moat Pop4 Networking       Online Campground Directory    http://www.camping-usa.com      Online Giftshop
Superstore   http://www.cloudninegifts.com
 
==========================================================================