| |
@@ -3,7 +3,7 @@
|
| |
Summary: An extensible library which provides authentication for applications
|
| |
Name: pam
|
| |
Version: 1.5.1
|
| |
- Release: 6%{?dist}
|
| |
+ Release: 7%{?dist}
|
| |
# The library is BSD licensed with option to relicense as GPLv2+
|
| |
# - this option is redundant as the BSD license allows that anyway.
|
| |
# pam_timestamp, pam_loginuid, and pam_console modules are GPLv2+.
|
| |
@@ -381,6 +381,9 @@
|
| |
exit 0
|
| |
|
| |
%changelog
|
| |
+ * Thu Jun 10 2021 Björn Esser <besser82@fedoraproject.org> - 1.5.1-7
|
| |
+ - Change the default password hash method to yescrypt
|
| |
+
|
| |
* Thu Jun 10 2021 Björn Esser <besser82@fedoraproject.org> - 1.5.1-6
|
| |
- Add a patch to not use crypt_checksalt for password expiration
|
| |
Resolves: #1965345, #1967150
|
| |
The yescrypt hashing method is considered to be much stronger than sha512crypt and fully supported by libxcrypt. It is based on NIST-approved primitives and on par with argon2 in strength.
Fresh installed systems, as well as newly computed hashes for the UNIX shadow file should prefer this method.
See also: