Actions
Feature #36650
closed
Change Linux password hashing default from sha256 to sha512
Status:
Closed
Priority:
Normal
Assignee:
Category:
Unattended installations
Target version:
Difficulty:
Triaged:
No
Updated by The Foreman Bot 5 months ago
- Status changed from New to Ready For Testing
- Assignee set to Marek Hulán
- Pull request https://github.com/theforeman/foreman/pull/10206 added
Updated by Marek Hulán 5 months ago
- Status changed from Ready For Testing to Closed
Applied in changeset foreman|e2dee7d6f7ffb505d317ca1b205f302ccd622063.
Updated by The Foreman Bot 5 months ago
- Pull request https://github.com/theforeman/foreman/pull/10214 added
Updated by Marek Hulán 5 months ago
- Tracker changed from Feature to Bug
- Description updated (diff)
- Status changed from Closed to New
- Red Hat JIRA set to SAT-26071
Updated by Marek Hulán 5 months ago
- Tracker changed from Bug to Feature
- Status changed from New to Closed
Updated by Marek Hulán 5 months ago
https://wiki.archlinux.org/title/SHA_password_hashes states that NSA has recommended SHA512 since RHEL 5. This means it's safe to do with wide compatibility. It should be noted that Fedora 35 has started to default to YESCRYPT. See ENCRYPT_METHOD in /etc/login.defs and https://www.fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow for more info.
Updated by Ewoud Kohl van Wijngaarden 4 months ago
- Related to Feature #37614: Use SHA512 for root password hashing when no OS is set added
Updated by 
Updated by
Updated by Ewoud Kohl van Wijngaarden 4 months ago
- Fixed in Releases deleted (
3.12.0)
Actions