> On 25 Jul 2022, at 15:35, Peter Stuge <pe...@stuge.se> wrote: > > Mikhail Koliada wrote: >> This idea has been fluctuating in my head for quite a while given >> that the migration had happened a while ago [0] and some other >> major distributions have already adopted yescrypt as their default algo >> by now [1]. > > Please only do that based on proven merit and nothing else. > > Fedora or anyone else for that matter making a change is a truly > terrible reason to take any action whatsoever, since other > organizations are driven by /their/ interests - with Fedora in > particular being driven by the business interests of Red Hat. > > I consider Gentoo a leader in many regards and it makes me really > sad whenever Gentoo changes based on nothing more than "others did it". >
A fair part of the motivation for the libxcrypt migration was allowing use of tougher hashing algorithms like yescrypt. While your concern may be valid in some contexts, it's not what's happening here, as Rich notes. Maybe zlogene's email should have explicitly stated that yescrypt has desirable security properties, but it's not being done simply because "Fedora did it". > > Thanks and kind regards > > //Peter > Best, sam
signature.asc
Description: Message signed with OpenPGP
