Bug #7731: Default OS root password hash algorithm should be SHA-2 - Foreman

Actions

Copy link

Bug #7731

closed

Default OS root password hash algorithm should be SHA-2

Added by Dominic Cleal about 10 years ago. Updated over 9 years ago.

Status:

Duplicate

Priority:

Normal

Assignee:

Category:

Security

Target version:

Difficulty:

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

#2127 added support for different root password hash algorithms, but set the default to MD5.

I'd prefer to see the default be a SHA-2 algorithm and for users to have to explicitly drop the security level if they wish (bearing in mind that most OS definitions are auto-created). I think most modern OSes have long supported SHA-2 (e.g. RHEL 5.2 or above), so I don't think MD5 is a reasonable default.

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

	Related to Foreman - Feature #2127: Support newer hash schemes for root passwords	Closed		01/15/2013			Actions
	Is duplicate of Foreman - Bug #10289: Change default root password hash function from MD5 to SHA256	Closed		04/28/2015			Actions

Project

General

Profile

Custom queries

Bug #7731

Default OS root password hash algorithm should be SHA-2

Updated by Dominic Cleal about 10 years ago

Updated by Dominic Cleal over 9 years ago

Updated by Dominic Cleal over 9 years ago