Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Bärbel
Participant

Getting rid of MD5 hashed passwords (local users, expert)

I see that even R81.10.10 uses MD5 hashes to store local users (in /etc/shadow) and for the expert password (in /pfrm2.0/config1/expert_pass_).

Is there a way to have a state-of-the-art hash algoritm?

I stumbled across this (again) while changing passwords to protect against CVE-2024-24919.

0 Kudos
1 Reply
Amir_Erman
Employee
Employee

Thanks for bringing this up

I agree this is an item to be fixed

This is already in working; Planned to be resolved in the coming R81.10.15

Please stay tune on our mailing list, soon we start the EA program

Amir

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events