From 8cbf938b55a6f2cb790ad2b519d6b18ac52c14ff Mon Sep 17 00:00:00 2001 From: Hugo Villeneuve Date: Mon, 29 Jul 2013 23:56:17 -0400 Subject: [PATCH] Change shadow default crypt method to SHA-512 --- stage2/pkg/shadow | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/stage2/pkg/shadow b/stage2/pkg/shadow index fac61fa..cd03100 100644 --- a/stage2/pkg/shadow +++ b/stage2/pkg/shadow @@ -20,11 +20,11 @@ hvconfig_pre() # cannot format them properly: sed -i -e 's/ ko//' -e 's/ zh_CN zh_TW//' man/Makefile.in - # Instead of using the default crypt method, use the more secure MD5 method + # Instead of using the default crypt method, use the more secure SHA-512 method # of password encryption, which also allows passwords longer than 8 characters. # It is also necessary to change the obsolete /var/spool/mail location for user # mailboxes that Shadow uses by default to the /var/mail location used currently: - sed -i -e 's@#ENCRYPT_METHOD DES@ENCRYPT_METHOD MD5@' \ + sed -i -e 's@#ENCRYPT_METHOD DES@ENCRYPT_METHOD SHA512@' \ -e 's@/var/spool/mail@/var/mail@' etc/login.defs } -- 2.20.1