Re: Passwords - Mailing list pgsql-hackers

From Peter Eisentraut
Subject Re: Passwords
Date
Msg-id Pine.LNX.4.21.0005072340320.442-100000@localhost.localdomain
Whole thread Raw
In response to Re: Passwords  (The Hermit Hacker <scrappy@hub.org>)
Responses Re: Passwords
List pgsql-hackers
The Hermit Hacker writes:

> My *understanding* is that MD5 is a half-way measure that is easier to
> break then DES, which is why it isn't under the export restrictions ...

If you don't feel secure about MD5 you can always use SHA1. In fact you
might want to look at the mhash package which has a bunch of hashing
functions with a decent interface and it's under a BSD'ish license. At
least you can steal the implementation from there.

-- 
Peter Eisentraut                  Sernanders väg 10:115
peter_e@gmx.net                   75262 Uppsala
http://yi.org/peter-e/            Sweden



pgsql-hackers by date:

Previous
From: Peter Eisentraut
Date:
Subject: Re: minor psql errors in RC5
Next
From: Hannu Krosing
Date:
Subject: Re: You're on SecurityFocus.com for the cleartext passwords.