[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Chicken-hackers] user-information update for OpenBSD
|
From: |
Peter Bex |
|
Subject: |
Re: [Chicken-hackers] user-information update for OpenBSD |
|
Date: |
Tue, 19 Jul 2016 19:33:31 +0200 |
|
User-agent: |
Mutt/1.5.23 (2014-03-12) |
On Tue, Jul 19, 2016 at 12:13:28PM -0400, John Cowan wrote:
> Christian Kellermann scripsit:
>
> > Maybe it makes sense to split out the sensitive information from the
> > user-information for all Operating systems and thinking of another set
> > of procedures that will produce the credentials. These can then use OS
> > specific functions to get at the information.
>
> I'd say, set the passwd field to '*' (which is not the encryption of anything
> on any known password scheme) on all systems. *Nobody* should be depending
> directly on the value of the encrypted password in 2016.
Yeah, but what if you're writing, say, a login manager or ssh replacement
in Scheme? Then you need to be able to crypt & compare the password and
preferably use a portable API to get the crypted password.
Cheers,
Peter
signature.asc
Description: Digital signature