Hi Christian, --On Mittwoch, 10. Juli 2002 11:42 +0200 Christian Röpke <christian.roepke@directbox.com> wrote:
[...] ok, but if we knows, that there is a way to crack the shadow file, why don't we use a secure algorithm ? (triple DES or AES) Are there no implementation for this algorithms ? (a DES cracker-maschine costs about 100.000 $) [...]
Ok, you are right of course. And that is the reasons why people begin to switch from DES to algorithms with higher key size (at the cost of performance in the case of 3DES). I just think it is important to point out that there still is no known attack against DES apart from brute force. In this case DES´s small keysize of 56 Bit might not even be a problem, because user passwords usually have much less entropy: <http://downloads.securityfocus.com/library/keylength.txt> Greetings, Bastian