On Fri, Mar 02, 2001 at 02:31:41PM +0200, Peter Pentchev wrote:
> On Fri, Mar 02, 2001 at 02:26:03PM +0200, Peter Pentchev wrote:
> > On Fri, Mar 02, 2001 at 01:23:01PM +0100, milunovic wrote:
> > >
> > > Does anybody have blow fish for FreeBSD or know wehere to find it?
> > > I just want to change password encription from MD5 to blow fish:o)
> >
> > A little question: why? MD5 seems to be secure enough.
> >
> > Other than that, look at the security/libmcrypt port, it has Blowfish
> > as an available encryption algorithm. It's not in a usable form for
> > password encryption, though; you need to pull out the guts of the
> > encryption function and build your own crypt() function.
>
> Come to think of it, there's nothing that would prevent security/libmcrypt
> to be part of the authentication process (not crypt(), though). Is there
> something inherently flawed in the idea of a PAM module using libs which
> do not live in /usr, but in /usr/local?
Why not just use OpenSSL which also includes this algorithm? You'd
still need to build it into a crypt() function, and the correct
location and layering for that to take place is in libcrypt, not PAM.
Kris
PGP signature
