From dacae920a1d6f8c1a97bdc0354408b81a3ed3aef Mon Sep 17 00:00:00 2001
From: Diego 'Flameeyes' Pettenò <flameeyes@gmail.com>
Date: Fri, 1 Aug 2008 16:04:58 +0200
Subject: Add support for using SHA512 hashihg for shadow passwords.

Instead of only supporting MD5-hashed passwords, make it possible to
use SHA512-hashed passwords, which should be stronger. This requires
glibc 2.7 and Linux-PAM 1.0.1. If the SHA512 hasher is not supported
by libcrypt, Linux-PAM will fallback to MD5 like before.
---
 linux-pam-conf | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'linux-pam-conf')

diff --git a/linux-pam-conf b/linux-pam-conf
index 44087d8..ee34768 100644
--- a/linux-pam-conf
+++ b/linux-pam-conf
@@ -9,7 +9,11 @@
 #define SUPPORT_NOLOGIN_ACCOUNT		1
 #define SUPPORT_NOLOGIN_AUTH		1
 
-#define UNIX_EXTENDED_ENCRYPTION md5 shadow
+#if WANT_SHA512
+# define UNIX_EXTENDED_ENCRYPTION	sha512 shadow
+#else
+# define UNIX_EXTENDED_ENCRYPTION	md5 shadow
+#endif
 
 #define LIKEAUTH likeauth
 #define DEBUG_NOLOGIN
-- 
cgit v1.2.3-65-gdbad