Re: passwd hashing algorithm

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Ollivier Robert: "Re: Replacement for NIS? (was Re: Obtaining NIS domainname from Gatorbox)"
• Previous message: Ollivier Robert: "Re: NIS"
• Maybe in reply to: Dave Stagner: "passwd hashing algorithm"
• Next in thread: Paul C Leyland: "Re: passwd hashing algorithm"

Yes,Yes, a sniffer could be installed, but this assumes your attacker
has physical access to your site. A bigger worry is sniffing on 
any of the networks before you.

If you are working in an environment that needs a higher level of
security than just passwords, run S/Key, or go for the overly expensive
(but easier to use) solution of SecureID. 

-john

• Next message: Ollivier Robert: "Re: Replacement for NIS? (was Re: Obtaining NIS domainname from Gatorbox)"
• Previous message: Ollivier Robert: "Re: NIS"
• Maybe in reply to: Dave Stagner: "passwd hashing algorithm"
• Next in thread: Paul C Leyland: "Re: passwd hashing algorithm"