> Karl Ferguson writes ("Re: md5sum passwords"):
> > I know what you're all saying, but I'd definately like the MD5 in place as
> > an
> > optional extra. Isn't that possible? The extra security as an Internet
> > Provider is a much neede
Karl Ferguson writes ("Re: md5sum passwords"):
> I know what you're all saying, but I'd definately like the MD5 in place as an
> optional extra. Isn't that possible? The extra security as an Internet
> Provider is a much needed asset...
As I wrote ea
> > A mixed solution may be possible, supplying DES (from both a US and a
> > non-US site) to those who require YP support. I'm still not in favor
> > of Debian doing this alone in the Linux community, though.
[stuff deleted]
> Longer passwords, while they may preclude compatablility with other
> A mixed solution may be possible, supplying DES (from both a US and a
> non-US site) to those who require YP support. I'm still not in favor
> of Debian doing this alone in the Linux community, though.
Yep, another "me too" reply...
I see quite often, like here at McGill University, what you
Daniel Quinlan writes ("Re: md5sum passwords"):
> 1. Release a new copy. Make it very public.
>
> It has been my experience that contributors are more apt to continue
> contributing if things aren't kept so private and are updated often.
I agree entirely.
> - Peo
Daniel Quinlan writes ("Re: md5sum passwords"):
> Bill Mitchell <[EMAIL PROTECTED]> writes:
> > This might be a bit harsh WRT the distribution itself. Too much
> > open input can lead to a lot of haggling over diverse viewpoints on
> > this or that alternat
Andrew Howell writes ("Re: md5sum passwords"):
> Daniel Quinlan writes:
> > I think switching would probably be a decent idea, although it is not
> > of earth-shattering importance to me. I'm also concerned about doing
> > Debian doing it alone, instead of
Andrew Howell <[EMAIL PROTECTED]> writes:
> Though it would be nice if the whole community switched I don't think
> it's that great a deal whether they do or not, us using MD5 and others
> using DES shouldn't lead to any incompatibilties or problems as far
> as I can see.
I asked Garrett A. Wollm
On Wed, 15 Nov 1995, Daniel Quinlan wrote:
> Open input is good, in general. If you want to guarantee haggling, do
> it on a mailing list. If you don't want haggling, have input sent to
> a responsible party.
Good point. I agree. General distribution of bug reports is a useful
option, but sh
Bill Mitchell <[EMAIL PROTECTED]> writes:
> This might be a bit harsh WRT the distribution itself. Too much
> open input can lead to a lot of haggling over diverse viewpoints on
> this or that alternative (not that we haven't had a bit of that
> anyhow).
Open input is good, in general. If you w
Ian Murdock <[EMAIL PROTECTED]> writes:
Daniel Quinlan <[EMAIL PROTECTED]>
>> BTW, I like the way their manual is set up and on the web. And I
>> also like that it seems more geared to open contributions than the
>> Debian manual.
> Hmm.. Well, I did release a draft of the manual in July so th
On Tue, 14 Nov 1995, Ian Murdock wrote:
>BTW, I like the way their manual is set up and on the web. And I
>also like that it seems more geared to open contributions than the
>Debian manual.
>
> Hmm.. Well, I did release a draft of the manual in July so that the
> Project could con
Daniel Quinlan writes:
> I think you mean "instead of DES". It's the crypt(3) function that
> would be changed to use MD5 (MD5a).
Yes, wasn't thinking straight obviously.
> I think switching would probably be a decent idea, although it is not
> of earth-shattering importance to me. I'm also con
Date: Wed, 15 Nov 1995 02:29:27 GMT
From: Daniel Quinlan <[EMAIL PROTECTED]>
BTW, I like the way their manual is set up and on the web. And I
also like that it seems more geared to open contributions than the
Debian manual.
Hmm.. Well, I did release a draft of the manual in July
Andrew Howell <[EMAIL PROTECTED]> writes:
> After discussing security with some friends we got around to using
> md5 instead of crypt.
I think you mean "instead of DES". It's the crypt(3) function that
would be changed to use MD5 (MD5a).
> This has been brought up before but nothing much seemed
After discussing security with some friends we got around to using
md5 instead of crypt. This has been brought up before but nothing
much seemed to happen. Is debian going to switch to md5 with 1.0 or
are people opposed to this?
Andrew
--
Dehydration - 34%, Recollection of previous evening - 2%,
16 matches
Mail list logo
