ʹÓÃsha256(512)Ëã·¨¼ÓÃÜlinuxÃÜÂë

LinuxÕÊ»§µÄÃÜÂë¼ÓÃܺó´æ·ÅÓÚ/etc/shadowÎļþÖС£¶ÔÓÚRedhat Enterprise°æ±¾£¬Ä¬ÈÏʹÓÃMD5Ëã·¨£¬Õâ¸öËã·¨ÒѾ­ºÜ²»°²È«¡£ºÜ¶à¾­µäµÄºÚ¿Í½Ì³Ì¶¼ÊǽÌÈËÄõ½shadowÎļþºó»ØÈ¥Æƽâ³örootµÄÃÜÂ룬Èç¹ûÄÜÓøüÄÑÆƽâµÄshaËã·¨¼ÓÃÜÃÜÂëÎÞÒÉ¿ÉÒÔÌá¸ß·þÎñÆ÷µÄ°²È«ÐÔ¡£ÒÔÏÂÄÚÈÝÊÇ×ÛºÏÁËhttp://www.cyberciti.biz/faq/rhel-centos-fedora-linux-upgrading-password-hashing/ £¬ http://kbase.redhat.com/faq/docs/DOC-15806 µÄÄÚÈݶøÀ´£¬Õë¶ÔRHEL5.2ÒÔÉÏ°æ±¾¡£
ÏÔʾµ±Ç°ÃÜÂë¼ÓÃÜËã·¨£º
# authconfig --test | grep hashing
Êä³ö£ºpassword hashing algorithm is md5
ÉèÖÃʹÓÃsha512Ëã·¨£º
# authconfig --passalgo=SHA512 --update
ÔÚÎÒµÄRHEL5.3°æÖУ¬Ìáʾunknown algorithm sha512, ʹÓÃÁËsha256£¬»¹Ã»¸ãÇå³þÊÇΪʲô¡£ÔÙ´ÎÏÔʾ£¬ÒѾ­¸ü¸ÄΪsha256Ëã·¨¡£
×îºó£¬ËùÓÐÓû§¶¼ÐèÒªÖØÐÂÉèÖÃÃÜÂë²ÅÄÜÉúЧ¡£¿ÉÒÔʹÓÃ# chage -d 0 userName Ç¿ÖÆËùÓÐÓû§Ï´εǼÐÞ¸ÄÃÜÂë¡£
ÔÚÎÒÓõÄarchlinuxÉÏ£¬ÉèÖ÷½·¨²»Í¬¡£²Î¿¼ÁËWiKiÉϵÄÄÚÈÝ£ºhttp://wiki.archlinux.org/index.php/SHA_Passwords
1.ÐÞ¸Ä /etc/pam.d/passwdÎļþ
#%PAM-1.0
#password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
#password required pam_unix.so md5 shadow use_authtok
password required pam_unix.so md5 shadow nullok
°Ñ×îºóÒ»ÐеÄmd5ÓÃsha256Ìæ»»
2.ÐÞ¸Ä/etc/default/passwdÎļþ
CRYPT=des ¸ÄΪ CRYPT=sha256
3.ËùÓÐÓû§ÖØÐÂÐÞ¸ÄÃÜÂë¡£