Actions
Feature #36650
closed
Change Linux password hashing default from sha256 to sha512
Difficulty:
Triaged:
No
Updated by The Foreman Bot 23 days ago
- Status changed from New to Ready For Testing
- Assignee set to Marek Hulán
- Pull request https://github.com/theforeman/foreman/pull/10206 added
Updated by Marek Hulán 17 days ago
- Status changed from Ready For Testing to Closed
Applied in changeset foreman|e2dee7d6f7ffb505d317ca1b205f302ccd622063.
Updated by The Foreman Bot 17 days ago
- Pull request https://github.com/theforeman/foreman/pull/10214 added
Updated by Marek Hulán 11 days ago
- Tracker changed from Feature to Bug
- Description updated (diff)
- Status changed from Closed to New
- Red Hat JIRA set to SAT-26071
Updated by Marek Hulán 11 days ago
- Tracker changed from Bug to Feature
- Status changed from New to Closed
Updated by Marek Hulán 11 days ago
https://wiki.archlinux.org/title/SHA_password_hashes states that NSA has recommended SHA512 since RHEL 5. This means it's safe to do with wide compatibility. It should be noted that Fedora 35 has started to default to YESCRYPT. See ENCRYPT_METHOD in /etc/login.defs and https://www.fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow for more info.
Updated by Ewoud Kohl van Wijngaarden 5 days ago
- Related to Feature #37614: Use SHA512 for root password hashing when no OS is set added
Actions