OPNsense Forum
Archive => 21.1 Legacy Series => Topic started by: seed on March 06, 2021, 12:29:20 pm
-
While working in the Config XML i found that passwords are stored as Blowfish. Why are Passwords not stored as SHA-512?
SHA-512 should be standard. Even the root users PW ist stored as Blowfish.
Extract from Config File:
<user>
<password>$2y$10$################################</password>
<scope>users</scope>
<name>testusername</name>
<descr>test test</descr>
<expires/>
<authorizedkeys/>
<ipsecpsk/>
<otp_seed/>
<uid>12345</uid>
<cert>############</cert>
<cert>############</cert>
</user>
-
Hmmm, or bcrypt, maybe?
https://en.wikipedia.org/wiki/Bcrypt
-
What's the problem with Blowfish?
-
https://www.cloudsecuretech.com/a-look-at-some-encryption-algorithms-used-over-the-years/
-
So?
Blowfish was designed by Bruce Schneier in 1993 and uses symmetric encryption. It has a variable key length from 32 bits to 448 bits and uses a 64-bit block cipher.
Although it still remains widely in use, AES is treated as the standard encryption method. It is also unpatented and royalty free and hence available for all users.
Since it uses a 64-bit block cipher, it is not recommended to use Blowfish encryption on file sizes larger than 4gb. In fact, Schneier himself recommends using Twofish encryption instead.
There is no weakness mentioned in that article ...
Blowfish has been available as a secure password hash algorithm in FreeBSD for years and works.
-
Unless your password is more than 4Gb in length, then it could be a problem. 8)
-
While working in the Config XML i found that passwords are stored as Blowfish. Why are Passwords not stored as SHA-512?
SHA-512 should be standard. Even the root users PW ist stored as Blowfish.
Extract from Config File:
<user>
<password>$2y$10$################################
What is the real problem? Conducting the man page "$2y" means bcrypt. Bcrypt is not the same like Blowfish, even if the former is derived from it. As far as I know, Bcrypt is still considered secure for password based authentication. Correct me if I am wrong.
Furthermore, it does not make sense only comparing the entropy of hash functions when used for password based authentication schemes.
-
What is the real problem? Conducting the man page "$2y" means bcrypt. Bcrypt is not the same like Blowfish, even if the former is derived from it. As far as I know, Bcrypt is still considered secure for password based authentication. Correct me if I am wrong.
Furthermore, it does not make sense only comparing the entropy of hash functions when used for password based authentication schemes.
bcrypt is a password-hashing function designed by Niels Provos and David Mazières, based on the Blowfish cipher ...
(Wikipedia)
Of course Blowfisg being a symmetrical cypher and not a hash funktion like SHA you need to design a specific password hash mechanism to use it as such. Same as with DES or AES ...
-
Less drama and more reasonable GitHub requests please. It's not an issue to change it, but I am a bit weary of "OH MY GOD WHAT IS WRONG WITH YOU PEOPLE" approach in recent reports. ;)
Cheers,
Franco
-
Bcrypt is still fine and the alternative is definitely not SHA. The alternatives to Bcrypt would be scrypt and argon2.
One advantage of Bcrypt is that it is widely supported.