diff options
| author | Sam Hartman <hartmans@debian.org> | 2021-02-03 12:27:27 -0500 |
|---|---|---|
| committer | Steve Langasek <steve.langasek@canonical.com> | 2021-09-15 17:52:36 -0700 |
| commit | a988df03c456c6a300a18ac5529efff4e1a1473b (patch) | |
| tree | f77fb2a1ba68d58f8396965064e706c0d26dc1b9 /debian/local | |
| parent | 0330eab989392465ed404c0439773fc526f1e12c (diff) | |
| download | pam-a988df03c456c6a300a18ac5529efff4e1a1473b.tar.gz pam-a988df03c456c6a300a18ac5529efff4e1a1473b.tar.bz2 pam-a988df03c456c6a300a18ac5529efff4e1a1473b.zip | |
debian/local/common-password: Document switch to yescrypt
Diffstat (limited to 'debian/local')
| -rw-r--r-- | debian/local/common-password | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/debian/local/common-password b/debian/local/common-password index 963f1eb4..676b814c 100644 --- a/debian/local/common-password +++ b/debian/local/common-password @@ -6,14 +6,14 @@ # used to change user passwords. The default is pam_unix. # Explanation of pam_unix options: -# -# The "sha512" option enables salted SHA512 passwords. Without this option, -# the default is Unix crypt. Prior releases used the option "md5". -# -# The "obscure" option replaces the old `OBSCURE_CHECKS_ENAB' option in -# login.defs. -# -# See the pam_unix manpage for other options. +# The "yescrypt" option enables +#hashed passwords using the yescrypt algorithm, introduced in Debian +#11. Without this option, the default is Unix crypt. Prior releases +#used the option "sha512"; if a shadow password hash will be shared +#between Debian 11 and older releases replace "yescrypt" with "sha512" +#for compatibility . The "obscure" option replaces the old +#`OBSCURE_CHECKS_ENAB' option in login.defs. See the pam_unix manpage +#for other options. # As of pam 1.0.1-6, this file is managed by pam-auth-update by default. # To take advantage of this, it is recommended that you configure any |