https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162021-08-02T15:44:30ZpfSense bugtrackerpfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=553832021-08-02T15:44:30ZBrad Davis
<ul><li><strong>Assignee</strong> set to <i>Viktor Gurov</i></li></ul><p>Can you implement this and switch to SHA-512?</p> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=553842021-08-02T15:47:52ZBrad Davis
<ul><li><strong>Target version</strong> set to <i>64</i></li></ul><p>(SHA-512 so it matches FreeBSD)</p> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=554002021-08-03T15:28:05ZJim Pingle
<ul><li><strong>Target version</strong> changed from <i>64</i> to <i>2.6.0</i></li><li><strong>Plus Target Version</strong> set to <i>21.09</i></li></ul> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=554092021-08-04T03:40:06ZViktor Gurov
<ul></ul><p><a class="external" href="https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/313">https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/313</a></p> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=554162021-08-04T08:03:06ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Pull Request Review</i></li></ul> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=558102021-08-18T11:30:08ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Pull Request Review</i> to <i>Feedback</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset <a class="changeset" title="Use SHA512 to hash user password. Implements #10298 Original commit by Viktor Gurov" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/a38556ffba0f8d6cf3f61bd7469ebbb922fd3f64">a38556ffba0f8d6cf3f61bd7469ebbb922fd3f64</a>.</p> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=559422021-08-26T08:33:48ZJim Pingle
<ul><li><strong>Tracker</strong> changed from <i>Feature</i> to <i>Todo</i></li><li><strong>Subject</strong> changed from <i>Use CNSA-compliant algo to hash user password</i> to <i>Use SHA-512 for user password hashes</i></li></ul><p>Updating subject and tracker for release notes.</p> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=562722021-09-09T13:20:51ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul><p>Working as expected.</p>
<ul>
<li>New users get SHA-512 password only.</li>
<li>Existing users get SHA-512 when their password is changed, old formats are removed.</li>
<li>Users can login OK either way, it uses whichever format is present on the account (SHA-512, bcrypt, etc).</li>
</ul> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=571152021-10-27T11:59:55ZJim Pingle
<ul><li><strong>Plus Target Version</strong> changed from <i>21.09</i> to <i>22.01</i></li></ul> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=590122022-02-15T08:22:13ZViktor Gurov
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-5 priority-4 priority-default closed" href="/issues/12800">Bug #12800</a>: Suboptimal Password Hashing</i> added</li></ul> pfSense - Todo #10298: Use SHA-512 for user password hasheshttps://redmine.pfsense.org/issues/10298?journal_id=592572022-02-22T13:09:37ZJim Pingle
<ul><li><strong>Related to</strong> <i><a class="issue tracker-2 status-3 priority-4 priority-default closed" href="/issues/12855">Feature #12855</a>: GUI option to select the user password hashing algorithm</i> added</li></ul>