Hello,
our ptxdist 2014.01.0 based product got an external security audit.
They complained that our passwords in the shadow file are hashed with the outdated crypt(3) algorithm.
Her advice is to use bcrypt, PBKDF2 or scrpy.
We are using busybox for passwd etc.
Is this a busybox limitation? Or can we change the hashing algorithm in busybox?
Or do we need to replace busybox' passwd etc. with something better?
Best regards,
Matthias