OpenWrt/LEDE Project

  • Status Unconfirmed
  • Percent Complete
    0%
  • Task Type Bug Report
  • Category Base system
  • Assigned To No-one
  • Operating System All
  • Severity Low
  • Priority Very Low
  • Reported Version Trunk
  • Due in Version Undecided
  • Due Date Undecided
  • Private
Attached to Project: OpenWrt/LEDE Project
Opened by Mihai-Drosi Caju - 03.07.2021

FS#3911 - Consider changing /etc/shadow's default password hashing algorithm

Currently the default algorithm used for storing passwords in /etc/shadow is md5crypt.
For security reasons this should be changed to a more suitable algorithm.
The present passwd implementation in busybox supports sha256crypt as well as sha512crypt.

This would require a simple patch at https://github.com/openwrt/openwrt/blob/master/package/utils/busybox/Config-defaults.in#L1325-L1327

Mihai-Drosi Caju commented on 03.07.2021 17:59

MUSL_DISABLE_CRYPT_SIZE_HACK should also be set for boards where this would be feasible to implement.

Loading...

Available keyboard shortcuts

Tasklist

Task Details

Task Editing