Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | update crypt_blowfish to support $2b$ prefix | Julien Ramseier | 2020-10-18 | 1 | -15/+23 |
| | | | | | | | Merge changes from Solar Designer's crypt_blowfish v1.3. This makes crypt_blowfish fully compatible with OpenBSD's bcrypt by adding support for the $2b$ prefix (which behaves the same as crypt_blowfish's $2y$). | ||||
* | revert low rounds-count limits in crypt hashes | Rich Felker | 2012-09-15 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | it was determined in discussion that these kind of limits are not sufficient to protect single-threaded servers against denial of service attacks from maliciously large round counts. the time scales simply vary too much; many users will want login passwords with rounds counts on a scale that gives decisecond latency, while highly loaded webservers will need millisecond latency or shorter. still some limit is left in place; the idea is not to protect against attacks, but to avoid the runtime of a single call to crypt being, for all practical purposes, infinite, so that configuration errors can be caught and fixed without bringing down whole systems. these limits are very high, on the order of minute-long runtimes for modest systems. | ||||
* | cleanup src/linux and src/misc trees, etc. | Rich Felker | 2012-09-07 | 1 | -0/+798 |
previously, it was pretty much random which one of these trees a given function appeared in. they have now been organized into: src/linux: non-POSIX linux syscalls (possibly shard with other nixen) src/legacy: various obsolete/legacy functions, mostly wrappers src/misc: still mostly uncategorized; some misc POSIX, some nonstd src/crypt: crypt hash functions further cleanup will be done later. |