On Mon, 25 Mar 2002, Andrei Robachevsky wrote: AR> You may remember that at the RIPE-41 it was agreed to improve the AR> security of password(passphrase) based auth-schemes by introducing the AR> MD5 hash algorithm for password encryption. AR> AR> Please find enclosed the MD5 proposal for your comments and suggestions. AR> AR> auth: MD5-PW <digest> AR> AR> where <digest> is a 128-bit MD5 digest. AR> AR> For example: AR> AR> auth: MD5-PW 4aabd3dbc0746c8a4b5467f99a4f8524 Hmm, would it not to be simpler to use BSD-style of $1$ crypt? E.g. Auth: CRYPT-PW $1$salt$hash... Which is - standard for most of current *NIX clones - easy to detect by $1$ prefix for the software Sincerely, D.Marck [DM5020, DM268-RIPE, DM3-RIPN] ------------------------------------------------------------------------ *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck@rinet.ru *** ------------------------------------------------------------------------