[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Libguestfs] [PATCH] customize: password: use SHA-512 on Void Linux and Arch Linux



On Thu, Jul 21, 2016 at 11:45:08AM +0200, Pino Toscano wrote:
> They are rolling distributions, so we can assume they have a glibc
> version greater than 2.7 (cca Oct 2007).
> ---
>  customize/password.ml | 3 +++
>  1 file changed, 3 insertions(+)
> 
> diff --git a/customize/password.ml b/customize/password.ml
> index 94b2f27..8a9fed3 100644
> --- a/customize/password.ml
> +++ b/customize/password.ml
> @@ -165,6 +165,9 @@ and default_crypto g root =
>    | ("opensuse"|"sles"), v when v >= 11 -> `SHA512
>    | ("opensuse"|"sles"), _ -> `MD5
>  
> +  (* Rolling distributions, which hopefully should be updated enough. *)
> +  | ("archlinux"|"voidlinux"), _ -> `SHA512
> +
>    | _, _ ->
>      let minor = g#inspect_get_minor_version root in
>      warning (f_"password: using insecure md5 password encryption for guest of type %s version %d.%d.

ACK.

Rich.

-- 
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
Read my programming and virtualization blog: http://rwmj.wordpress.com
virt-p2v converts physical machines to virtual machines.  Boot with a
live CD or over the network (PXE) and turn machines into KVM guests.
http://libguestfs.org/virt-v2v


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]