kernel-packages team mailing list archive

Thread
Date

[Bug 1349252] Re: crypt(3) lacks Blowfish support

To: kernel-packages@xxxxxxxxxxxxxxxxxxx
From: Marcus Bointon <1349252@xxxxxxxxxxxxxxxxxx>
Date: Fri, 16 Oct 2015 22:23:20 -0000
Reply-to: Bug 1349252 <1349252@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Please ignore my last comment. bcrypt is undoubtedly better than a
single round of SHA512 as a password hash (what I was on about), but
SHA512 is not the same thing as the multiple rounds used in SHA512-CRYPT
that's in libc and in Ulrich's paper.

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1349252

Title:
  crypt(3) lacks Blowfish support

Status in glibc package in Ubuntu:
  Won't Fix
Status in linux package in Ubuntu:
  Invalid

Bug description:
  crypt(3) bundled with Ubuntu's GNU C Library supports MD5, DES, SHA256
  and SHA512 hashing methods, but lacks support for Blowfish (aka
  bcrypt).

  There is a patch available from Openwall:
  http://www.openwall.com/crypt/

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1349252/+subscriptions

References

[Bug 1349252] [NEW] crypt(3) lacks Blowfish support
From: Dan Quade, 2014-07-28