Dear Wiki user, You have subscribed to a wiki page or wiki category on "Fedora Project Wiki" for change notification. The following page has been changed by PaulFrields: http://fedoraproject.org/wiki/Docs/Beats/Security?action=diff&rev2=50&rev1=49 The comment on the change is: Editorial pass ------------------------------------------------------------------------------ === Security Enhancements === - * Fedora continues to improve its many proactive [http://fedoraproject.org/wiki/Security/Features security features]. + Fedora continues to improve its many proactive [http://fedoraproject.org/wiki/Security/Features security features]. - * The `glibc` package in Fedora 8 had [http://people.redhat.com/drepper/sha-crypt.html support] for passwords using SHA-256 and SHA-512 hashing. Previously, only DES and MD5 were available. These tools have been extended in Fedora 9. Password hashing using the SHA-256 and SHA-512 hash functions is now supported. + The `glibc` package in Fedora 8 had [http://people.redhat.com/drepper/sha-crypt.html support] for passwords using SHA-256 and SHA-512 hashing. Previously, only DES and MD5 were available. These tools have been extended in Fedora 9. Password hashing using the SHA-256 and SHA-512 hash functions is now supported. To switch to SHA-256 or SHA-512 on an installed system, use {{{authconfig --passalgo=sha256 --update}}} or {{{authconfig --passalgo=sha512 --update}}}. Alternatively, use the {{{authconfig-gtk}}} GUI tool to configure the hashing method. Existing user accounts will not be affected until their passwords are changed. SHA-512 is used by default on newly installed systems. Other algorithms can be configured only for kickstart installations, by using the `--passalgo` or `--enablemd5` options for the kickstart `auth` command. If your installation does not use kickstart, use `authconfig` as described above, and then change the root user password, and passwords for other users created after installation. - New options were added to `libuser`, `pam`, and `shadow-utils`, to support these password hashing algorithms. Running {{{authconfig}}} configures all these options automatically, so it is not necessary to modify them manually. + New options now apear in `libuser`, `pam`, and `shadow-utils` to support these password hashing algorithms. Running {{{authconfig}}} configures all these options automatically, so it is not necessary to modify them manually. * New values for the `crypt_style` option, and the new options `hash_rounds_min`, and `hash_rounds_max`, are now supported in the `[defaults]` section of `/etc/libuser.conf`. Refer to the `libuser.conf(5)` man page for details. -- Fedora-relnotes-content mailing list Fedora-relnotes-content@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-relnotes-content
