9096 passwords (policy.conf) should default to sha512

Review Request #1967 — Created June 4, 2019 and updated

ryaeng
illumos-gate
master
44c5069...
general
9096 passwords (policy.conf) should default to sha512

I created two test accounts. test1 created prior to change. test2 created post change. The hashes stored in /etc/shadow appear to reflect the change.

ryan@openindiana:/code/illumos-gate$ sudo grep test /etc/shadow
Password:
test1:$5$pbWT57pX$QVmU7JcEtqgyd9rKaxG1RrQU/0Ob7fux03rxjE7VnJ1:18050::::::
test2:$6$aXCY1k5a$RBNqxxyXeoL6vgYPBq./bNAFTwfw6I9q.7f4v.DwIgjt8ouXRbie.SL7fSX.iLyZogqEoNr2MNbdMiPZHKXys0:18051::::::

  • 0
  • 0
  • 1
  • 0
  • 1
Description From Last Updated
tsoome
  1. Ship It!
  2. 
      
ptribble
  1. 
      
  2. usr/src/lib/libsecdb/policy.conf (Diff revision 1)
     
     

    Seeing as you're touching this comment, should it say "older Solaris", as current Solaris is at least sha256?

  3. 
      
ptribble
  1. I suspect you ought to update the man page too, as it still says that the traditional unix algorithm is the default.

  2. 
      
ryaeng
Review request changed

Commit:

-b167175247786ce1439ead7fc15198177f1c9d7d
+44c5069e2a6dc6c0a81c6a980224b0d84d432ea9

Diff:

Revision 2 (+7 -7)

Show changes

ptribble
  1. Ship It!
  2. 
      
citrus
  1. Ship It!
  2. 
      
ryaeng
  1. Ship It!
  2. 
      
tsoome
  1. Ship It!
  2. 
      
Loading...