Hello Experts,
I am in the process of enabling stronger encryption method (Blowfish) on SLES 15 Server. I have tried to enable blowfish in /etc/login.defs under
Quote:
ENCRYPT_METHOD blowfish
ENCRYPT_METHOD_NIS blowfish
|
But when I try to change the password of a user, I get following error,
Quote:
Code:
2020-07-31T15:44:08.543922+02:00 ltdvnis01 passwd[28521]: pam_unix(passwd:chauthtok): Algo blowfish not supported by the crypto backend, falling back to MD5
2020-07-31T15:44:08.550694+02:00 ltdvnis01 passwd[28521]: pam_unix(passwd:chauthtok): password changed for test1
|
So it could not use Blowfish and falls back to MD5. Also the hash key in /etc/shadow confirms this. As it is not $2$ as expected.
The SuSE Documentation however says,
Using Yast, one can select Blowfish Encryption, using ,
Quote:
Yast-->Security Overview-->
Password Encryption Method
Choose a password encryption algorithm. Normally there is no need to change the default(Blowfish).
|
I could not see Blowfish option in Yast.
So the question is , if it is default, should I still have to enable it somehow? If yes then how?
If not then how do I install and enable it?
Kindly provide me the pointers. Ofcourse I will also be searching google.
Thanx in advance.
Regards,
Admin