Re: Crypt Setting

From: Casper Dik (Casper.Dik@Sun.COM)
Date: 12/23/02

To: bsec <>
Date: Mon, 23 Dec 2002 01:50:27 +0100
From: Casper Dik <Casper.Dik@Sun.COM>

>I'm under the impression that it's a good idea to increase the number of
>types crypt() is used for encrypting user passwords; however, I have been
>unable to determine where in Solaris 8 I can do this. Does anyone know
>what the default number of types crypt() is used in Solaris 8 and where
>the setting is located to change this value?

Solaris 8 cannot, I'm afraid. The latest release of Solaris 9 can.

The Solaris 9 12/02 what's new docs say:


    Enhanced crypt() Function

    Password encryption protects passwords from being read by intruders.
    Three strong password encryption modules are now available in the

        * A version of Blowfish that is compatible with BSD systems
        * A version of MD5 that is compatible with BSD and Linux systems
        * A stronger version of MD5 that is compatible with other
        Solaris 9 12/02 systems

    For information on how to protect your user passwords with these new
    encryption modules, see the System Administration Guide: Security
    Services. For information on the strength of the modules, see the
    crypt_bsdbf(5), crypt_bsdmd5(5), and crypt_sunmd5(5) man pages.

And see also: