From 957be44dcca09f50936cb0deb260fe975d4f0b11 Mon Sep 17 00:00:00 2001 From: Peter Powell Date: Fri, 9 Sep 2016 10:20:16 +0100 Subject: Update documentation for password hashing. - Follow best current practises by using bcrypt almost everywhere in the example configuration files. - Document the existence of new hashing modules in master. --- docs/conf/opers.conf.example | 13 +++++++------ 1 file changed, 7 insertions(+), 6 deletions(-) (limited to 'docs/conf/opers.conf.example') diff --git a/docs/conf/opers.conf.example b/docs/conf/opers.conf.example index 3ede475f6..5e1ec28f5 100644 --- a/docs/conf/opers.conf.example +++ b/docs/conf/opers.conf.example @@ -141,13 +141,14 @@ # Remember: This is case sensitive. name="Adam" - # hash: What hash this password is hashed with. - # Requires the module for selected hash (md5, sha256 or ripemd160) - # be loaded and the password hashing module (password_hash) loaded. - # Options here are: "md5", "sha256" and "ripemd160", or one of - # these prefixed with "hmac-", e.g.: "hmac-sha256". + # hash: the hash function this password is hashed with. Requires the + # module for the selected function (bcrypt, md5, sha1, sha256, or + # ripemd160) and the password hashing module (password_hash) to be + # loaded. + # You may also use any of the above other than bcrypt prefixed with + # either "hmac-" or "pbkdf2-hmac-" (requires the pbkdf2 module). # Create hashed passwords with: /mkpasswd - hash="hmac-sha256" + hash="bcrypt" # password: A hash of the password (see above option) hashed # with /mkpasswd . See the password_hash module -- cgit v1.2.3