Aaron Toponce ⚛️:debian:  

You probably weren't aware, but your #Linux crypt(5) supports the following #password hashing functions (in addition to some others):

- bcrypt ($2b$)
- scrypt ($7$)
- yescrypt ($y$)

You should definitely migrate to one of those password hashing functions over the risky sha256crypt / sha512crypt which is default on most distros.

#cryptography #security #passwords

pthree.org/2018/05/23/do-not-u

1+
Paul Tötterman
Follow

@atoponce where's argon2 support?

· Librem Social · 1 · 0 · 2
Aaron Toponce ⚛️:debian:  

@ptman Good question. I don't know why that wasn't (hasn't?) been implemented.

1
Aaron Toponce ⚛️:debian:  

@ptman I dug deeper. Argon2 support was requested to the linux-pam project in 2018, to which the devs responded that it needs to be in libxcrypt first.

github.com/linux-pam/linux-pam

A pull request has been submitted to libxcrypt in 2020, but it appears there are some issues with the code. As such, the PR remains open.

github.com/besser82/libxcrypt/

0
Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml